RHEL 7 : atomic-openshift (RHSA-2016:2064)
Medium Nessus Plugin ID 119382
SynopsisThe remote Red Hat host is missing one or more security updates.
DescriptionAn update for atomic-openshift is now available for Red Hat OpenShift Container Platform 3.1, 3.2, and 3.3.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Red Hat OpenShift Container Platform is the company's cloud computing Platform-as-a-Service (PaaS) solution designed for on-premise or private cloud deployments.
Security Fix(es) :
* It was found that Kubernetes did not correctly validate X.509 client intermediate certificate host name fields. An attacker could use this flaw to bypass authentication requirements by using a specially crafted X.509 certificate. (CVE-2016-7075)
This advisory contains the RPM packages for this release. See the following advisory for the container images for this release :
All OpenShift Container Platform 3 users are advised to upgrade to these updated images.
SolutionUpdate the affected packages.