RHEL 8 / 9 : OpenShift Container Platform 4.14.0 (RHSA-2023:5009)

critical Nessus Plugin ID 194294

Synopsis

The remote Red Hat host is missing one or more security updates for OpenShift Container Platform 4.14.0.

Description

The remote Redhat Enterprise Linux 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:5009 advisory.

- golang: net/http: handle server errors after sending GOAWAY (CVE-2022-27664)

- kube-apiserver: Bypassing policies imposed by the ImagePolicyWebhook admission plugin (CVE-2023-2727)

- kube-apiserver: Bypassing enforce mountable secrets policy imposed by the ServiceAccount admission plugin (CVE-2023-2728)

- openshift: OCP & FIPS mode (CVE-2023-3089)

- ovn: service monitor MAC flow is not rate limited (CVE-2023-3153)

- golang.org/x/net/html: Cross site scripting (CVE-2023-3978)

- scipy: use-after-free in Py_FindObjects() function (CVE-2023-29824)

- goproxy: Denial of service (DoS) via unspecified vectors. (CVE-2023-37788)

- golang: html/template: improper handling of HTML-like comments within script contexts (CVE-2023-39318)

- golang: html/template: improper handling of special tags within script contexts (CVE-2023-39319)

- golang: crypto/tls: panic when processing post-handshake message on QUIC connections (CVE-2023-39321)

- golang: crypto/tls: lack of a limit on buffered post-handshake (CVE-2023-39322)

- golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487) (CVE-2023-39325)

- HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

Solution

Update the RHEL OpenShift Container Platform 4.14.0 package based on the guidance in RHSA-2023:5009.

See Also

https://access.redhat.com/security/updates/classification/#important

https://access.redhat.com/security/vulnerabilities/RHSB-2023-001

https://access.redhat.com/security/vulnerabilities/RHSB-2023-003

https://bugzilla.redhat.com/show_bug.cgi?id=2124669

https://bugzilla.redhat.com/show_bug.cgi?id=2212085

https://bugzilla.redhat.com/show_bug.cgi?id=2213279

https://bugzilla.redhat.com/show_bug.cgi?id=2221034

https://bugzilla.redhat.com/show_bug.cgi?id=2224245

https://bugzilla.redhat.com/show_bug.cgi?id=2228689

https://bugzilla.redhat.com/show_bug.cgi?id=2237773

https://bugzilla.redhat.com/show_bug.cgi?id=2237776

https://bugzilla.redhat.com/show_bug.cgi?id=2237777

https://bugzilla.redhat.com/show_bug.cgi?id=2237778

https://bugzilla.redhat.com/show_bug.cgi?id=2242803

https://bugzilla.redhat.com/show_bug.cgi?id=2243296

http://www.nessus.org/u?6c763b8f

https://access.redhat.com/errata/RHSA-2023:5009

Plugin Details

Severity: Critical

ID: 194294

File Name: redhat-RHSA-2023-5009.nasl

Version: 1.1

Type: local

Agent: unix

Published: 4/28/2024

Updated: 4/28/2024

Supported Sensors: Frictionless Assessment AWS, Frictionless Assessment Azure, Frictionless Assessment Agent, Nessus Agent, Agentless Assessment, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.7

CVSS v2

Risk Factor: Critical

Base Score: 10

Temporal Score: 8.3

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS Score Source: CVE-2023-29824

CVSS v3

Risk Factor: Critical

Base Score: 9.8

Temporal Score: 9.1

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:F/RL:O/RC:C

Vulnerability Information

CPE: cpe:/o:redhat:enterprise_linux:8, cpe:/o:redhat:enterprise_linux:9, p-cpe:/a:redhat:enterprise_linux:afterburn, p-cpe:/a:redhat:enterprise_linux:afterburn-dracut, p-cpe:/a:redhat:enterprise_linux:bpftool, p-cpe:/a:redhat:enterprise_linux:buildah, p-cpe:/a:redhat:enterprise_linux:buildah-tests, p-cpe:/a:redhat:enterprise_linux:butane, p-cpe:/a:redhat:enterprise_linux:kernel-modules-extra, p-cpe:/a:redhat:enterprise_linux:kernel-modules-internal, p-cpe:/a:redhat:enterprise_linux:kernel-modules-partner, p-cpe:/a:redhat:enterprise_linux:kernel-rt, p-cpe:/a:redhat:enterprise_linux:butane-redistributable, p-cpe:/a:redhat:enterprise_linux:catch, p-cpe:/a:redhat:enterprise_linux:catch-devel, p-cpe:/a:redhat:enterprise_linux:conmon, p-cpe:/a:redhat:enterprise_linux:container-selinux, p-cpe:/a:redhat:enterprise_linux:containernetworking-plugins, p-cpe:/a:redhat:enterprise_linux:containers-common, p-cpe:/a:redhat:enterprise_linux:coreos-installer, p-cpe:/a:redhat:enterprise_linux:coreos-installer-bootinfra, p-cpe:/a:redhat:enterprise_linux:coreos-installer-dracut, p-cpe:/a:redhat:enterprise_linux:cri-o, p-cpe:/a:redhat:enterprise_linux:cri-tools, p-cpe:/a:redhat:enterprise_linux:crun, p-cpe:/a:redhat:enterprise_linux:crun-wasm, p-cpe:/a:redhat:enterprise_linux:fmt, p-cpe:/a:redhat:enterprise_linux:fmt-devel, p-cpe:/a:redhat:enterprise_linux:gmock, p-cpe:/a:redhat:enterprise_linux:gmock-devel, p-cpe:/a:redhat:enterprise_linux:golang-github-prometheus-promu, p-cpe:/a:redhat:enterprise_linux:google-benchmark, p-cpe:/a:redhat:enterprise_linux:google-benchmark-devel, p-cpe:/a:redhat:enterprise_linux:google-benchmark-doc, p-cpe:/a:redhat:enterprise_linux:gtest, p-cpe:/a:redhat:enterprise_linux:gtest-devel, p-cpe:/a:redhat:enterprise_linux:haproxy, p-cpe:/a:redhat:enterprise_linux:haproxy26, p-cpe:/a:redhat:enterprise_linux:ignition, p-cpe:/a:redhat:enterprise_linux:ignition-validate, p-cpe:/a:redhat:enterprise_linux:kata-containers, p-cpe:/a:redhat:enterprise_linux:kernel, p-cpe:/a:redhat:enterprise_linux:kernel-64k, p-cpe:/a:redhat:enterprise_linux:kernel-64k-core, p-cpe:/a:redhat:enterprise_linux:kernel-64k-debug, p-cpe:/a:redhat:enterprise_linux:kernel-64k-debug-core, p-cpe:/a:redhat:enterprise_linux:kernel-64k-debug-devel, p-cpe:/a:redhat:enterprise_linux:kernel-64k-debug-devel-matched, p-cpe:/a:redhat:enterprise_linux:kernel-64k-debug-modules, p-cpe:/a:redhat:enterprise_linux:kernel-64k-debug-modules-core, p-cpe:/a:redhat:enterprise_linux:kernel-64k-debug-modules-extra, p-cpe:/a:redhat:enterprise_linux:kernel-64k-debug-modules-internal, p-cpe:/a:redhat:enterprise_linux:kernel-64k-debug-modules-partner, p-cpe:/a:redhat:enterprise_linux:kernel-rt-core, p-cpe:/a:redhat:enterprise_linux:kernel-rt-debug, p-cpe:/a:redhat:enterprise_linux:kernel-rt-debug-core, p-cpe:/a:redhat:enterprise_linux:kernel-rt-debug-devel, p-cpe:/a:redhat:enterprise_linux:kernel-rt-debug-devel-matched, p-cpe:/a:redhat:enterprise_linux:kernel-rt-debug-kvm, p-cpe:/a:redhat:enterprise_linux:kernel-rt-debug-modules, p-cpe:/a:redhat:enterprise_linux:kernel-rt-debug-modules-core, p-cpe:/a:redhat:enterprise_linux:kernel-rt-debug-modules-extra, p-cpe:/a:redhat:enterprise_linux:kernel-rt-debug-modules-internal, p-cpe:/a:redhat:enterprise_linux:kernel-rt-debug-modules-partner, p-cpe:/a:redhat:enterprise_linux:kernel-rt-devel, p-cpe:/a:redhat:enterprise_linux:kernel-rt-devel-matched, p-cpe:/a:redhat:enterprise_linux:kernel-rt-kvm, p-cpe:/a:redhat:enterprise_linux:kernel-rt-modules, p-cpe:/a:redhat:enterprise_linux:kernel-rt-modules-core, p-cpe:/a:redhat:enterprise_linux:python-futurist, p-cpe:/a:redhat:enterprise_linux:python-glanceclient, p-cpe:/a:redhat:enterprise_linux:python-hardware, p-cpe:/a:redhat:enterprise_linux:python-ironic-lib, p-cpe:/a:redhat:enterprise_linux:python-ironic-prometheus-exporter, p-cpe:/a:redhat:enterprise_linux:kernel-64k-devel, p-cpe:/a:redhat:enterprise_linux:kernel-64k-devel-matched, p-cpe:/a:redhat:enterprise_linux:kernel-64k-modules, p-cpe:/a:redhat:enterprise_linux:kernel-64k-modules-core, p-cpe:/a:redhat:enterprise_linux:kernel-64k-modules-extra, p-cpe:/a:redhat:enterprise_linux:kernel-64k-modules-internal, p-cpe:/a:redhat:enterprise_linux:kernel-64k-modules-partner, p-cpe:/a:redhat:enterprise_linux:kernel-core, p-cpe:/a:redhat:enterprise_linux:kernel-cross-headers, p-cpe:/a:redhat:enterprise_linux:kernel-debug, p-cpe:/a:redhat:enterprise_linux:kernel-debug-core, p-cpe:/a:redhat:enterprise_linux:kernel-debug-devel, p-cpe:/a:redhat:enterprise_linux:kernel-debug-devel-matched, p-cpe:/a:redhat:enterprise_linux:kernel-debug-modules, p-cpe:/a:redhat:enterprise_linux:kernel-debug-modules-core, p-cpe:/a:redhat:enterprise_linux:kernel-debug-modules-extra, p-cpe:/a:redhat:enterprise_linux:kernel-debug-modules-internal, p-cpe:/a:redhat:enterprise_linux:kernel-debug-modules-partner, p-cpe:/a:redhat:enterprise_linux:kernel-debug-uki-virt, p-cpe:/a:redhat:enterprise_linux:kernel-devel, p-cpe:/a:redhat:enterprise_linux:kernel-devel-matched, p-cpe:/a:redhat:enterprise_linux:kernel-headers, p-cpe:/a:redhat:enterprise_linux:kernel-ipaclones-internal, p-cpe:/a:redhat:enterprise_linux:kernel-modules, p-cpe:/a:redhat:enterprise_linux:kernel-modules-core, p-cpe:/a:redhat:enterprise_linux:kernel-rt-modules-extra, p-cpe:/a:redhat:enterprise_linux:kernel-rt-modules-internal, p-cpe:/a:redhat:enterprise_linux:kernel-rt-modules-partner, p-cpe:/a:redhat:enterprise_linux:kernel-rt-selftests-internal, p-cpe:/a:redhat:enterprise_linux:kernel-selftests-internal, p-cpe:/a:redhat:enterprise_linux:kernel-tools, p-cpe:/a:redhat:enterprise_linux:kernel-tools-libs, p-cpe:/a:redhat:enterprise_linux:kernel-tools-libs-devel, p-cpe:/a:redhat:enterprise_linux:kernel-uki-virt, p-cpe:/a:redhat:enterprise_linux:kernel-zfcpdump, p-cpe:/a:redhat:enterprise_linux:kernel-zfcpdump-core, p-cpe:/a:redhat:enterprise_linux:kernel-zfcpdump-devel, p-cpe:/a:redhat:enterprise_linux:kernel-zfcpdump-devel-matched, p-cpe:/a:redhat:enterprise_linux:kernel-zfcpdump-modules, p-cpe:/a:redhat:enterprise_linux:kernel-zfcpdump-modules-core, p-cpe:/a:redhat:enterprise_linux:kernel-zfcpdump-modules-extra, p-cpe:/a:redhat:enterprise_linux:kernel-zfcpdump-modules-internal, p-cpe:/a:redhat:enterprise_linux:kernel-zfcpdump-modules-partner, p-cpe:/a:redhat:enterprise_linux:nmstate, p-cpe:/a:redhat:enterprise_linux:nmstate-devel, p-cpe:/a:redhat:enterprise_linux:nmstate-libs, p-cpe:/a:redhat:enterprise_linux:nmstate-static, p-cpe:/a:redhat:enterprise_linux:openshift, p-cpe:/a:redhat:enterprise_linux:openshift-ansible, p-cpe:/a:redhat:enterprise_linux:openshift-ansible-test, p-cpe:/a:redhat:enterprise_linux:openshift-clients, p-cpe:/a:redhat:enterprise_linux:openshift-clients-redistributable, p-cpe:/a:redhat:enterprise_linux:openshift-hyperkube, p-cpe:/a:redhat:enterprise_linux:openshift-kuryr, p-cpe:/a:redhat:enterprise_linux:openshift-kuryr-cni, p-cpe:/a:redhat:enterprise_linux:openshift-kuryr-common, p-cpe:/a:redhat:enterprise_linux:openshift-kuryr-controller, p-cpe:/a:redhat:enterprise_linux:openshift-prometheus-promu, p-cpe:/a:redhat:enterprise_linux:openshift4-aws-iso, p-cpe:/a:redhat:enterprise_linux:openstack-ironic, p-cpe:/a:redhat:enterprise_linux:openstack-ironic-api, p-cpe:/a:redhat:enterprise_linux:openstack-ironic-common, p-cpe:/a:redhat:enterprise_linux:openstack-ironic-conductor, p-cpe:/a:redhat:enterprise_linux:openstack-ironic-dnsmasq-tftp-server, p-cpe:/a:redhat:enterprise_linux:openstack-ironic-inspector, p-cpe:/a:redhat:enterprise_linux:openstack-ironic-inspector-api, p-cpe:/a:redhat:enterprise_linux:openstack-ironic-inspector-conductor, p-cpe:/a:redhat:enterprise_linux:openstack-ironic-inspector-dnsmasq, p-cpe:/a:redhat:enterprise_linux:openstack-ironic-python-agent, p-cpe:/a:redhat:enterprise_linux:ovn23.09, p-cpe:/a:redhat:enterprise_linux:ovn23.09-central, p-cpe:/a:redhat:enterprise_linux:ovn23.09-host, p-cpe:/a:redhat:enterprise_linux:ovn23.09-vtep, p-cpe:/a:redhat:enterprise_linux:perf, p-cpe:/a:redhat:enterprise_linux:podman, p-cpe:/a:redhat:enterprise_linux:podman-catatonit, p-cpe:/a:redhat:enterprise_linux:podman-docker, p-cpe:/a:redhat:enterprise_linux:podman-gvproxy, p-cpe:/a:redhat:enterprise_linux:podman-plugins, p-cpe:/a:redhat:enterprise_linux:podman-remote, p-cpe:/a:redhat:enterprise_linux:podman-tests, p-cpe:/a:redhat:enterprise_linux:python-automaton, p-cpe:/a:redhat:enterprise_linux:python-cinderclient, p-cpe:/a:redhat:enterprise_linux:python-cliff, p-cpe:/a:redhat:enterprise_linux:python-debtcollector, p-cpe:/a:redhat:enterprise_linux:python-decorator, p-cpe:/a:redhat:enterprise_linux:python-dracclient, p-cpe:/a:redhat:enterprise_linux:python-fixtures, p-cpe:/a:redhat:enterprise_linux:python-osc-lib, p-cpe:/a:redhat:enterprise_linux:python-oslo-cache, p-cpe:/a:redhat:enterprise_linux:python-oslo-cache-lang, p-cpe:/a:redhat:enterprise_linux:python-keystoneauth1, p-cpe:/a:redhat:enterprise_linux:python-keystoneclient, p-cpe:/a:redhat:enterprise_linux:python-keystonemiddleware, p-cpe:/a:redhat:enterprise_linux:python-openstacksdk, p-cpe:/a:redhat:enterprise_linux:python-os-service-types, p-cpe:/a:redhat:enterprise_linux:python-os-traits, p-cpe:/a:redhat:enterprise_linux:python-oslo-concurrency, p-cpe:/a:redhat:enterprise_linux:python-oslo-concurrency-lang, p-cpe:/a:redhat:enterprise_linux:python-oslo-config, p-cpe:/a:redhat:enterprise_linux:python-oslo-context, p-cpe:/a:redhat:enterprise_linux:python-oslo-db, p-cpe:/a:redhat:enterprise_linux:python-oslo-db-lang, p-cpe:/a:redhat:enterprise_linux:python-oslo-i18n, p-cpe:/a:redhat:enterprise_linux:python-oslo-i18n-lang, p-cpe:/a:redhat:enterprise_linux:python-oslo-log, p-cpe:/a:redhat:enterprise_linux:python-oslo-log-lang, p-cpe:/a:redhat:enterprise_linux:python-oslo-messaging, p-cpe:/a:redhat:enterprise_linux:python-oslo-middleware, p-cpe:/a:redhat:enterprise_linux:python-oslo-middleware-lang, p-cpe:/a:redhat:enterprise_linux:python-oslo-policy, p-cpe:/a:redhat:enterprise_linux:python-oslo-policy-lang, p-cpe:/a:redhat:enterprise_linux:python-oslo-rootwrap, p-cpe:/a:redhat:enterprise_linux:python-oslo-serialization, p-cpe:/a:redhat:enterprise_linux:python-oslo-service, p-cpe:/a:redhat:enterprise_linux:python-oslo-upgradecheck, p-cpe:/a:redhat:enterprise_linux:python-oslo-utils, p-cpe:/a:redhat:enterprise_linux:python-oslo-utils-lang, p-cpe:/a:redhat:enterprise_linux:python-oslo-versionedobjects, p-cpe:/a:redhat:enterprise_linux:python-oslo-versionedobjects-lang, p-cpe:/a:redhat:enterprise_linux:python-osprofiler, p-cpe:/a:redhat:enterprise_linux:python-pbr, p-cpe:/a:redhat:enterprise_linux:python-proliantutils, p-cpe:/a:redhat:enterprise_linux:python-pycadf, p-cpe:/a:redhat:enterprise_linux:python-pycadf-common, p-cpe:/a:redhat:enterprise_linux:python-requestsexceptions, p-cpe:/a:redhat:enterprise_linux:python-scciclient, p-cpe:/a:redhat:enterprise_linux:python-stevedore, p-cpe:/a:redhat:enterprise_linux:python-sushy, p-cpe:/a:redhat:enterprise_linux:python-sushy-oem-idrac, p-cpe:/a:redhat:enterprise_linux:python-swiftclient, p-cpe:/a:redhat:enterprise_linux:python-tenacity, p-cpe:/a:redhat:enterprise_linux:python-tooz, p-cpe:/a:redhat:enterprise_linux:python-wrapt, p-cpe:/a:redhat:enterprise_linux:python-wrapt-doc, p-cpe:/a:redhat:enterprise_linux:python3-automaton, p-cpe:/a:redhat:enterprise_linux:python3-cinderclient, p-cpe:/a:redhat:enterprise_linux:python3-cliff, p-cpe:/a:redhat:enterprise_linux:python3-cliff-tests, p-cpe:/a:redhat:enterprise_linux:python3-debtcollector, p-cpe:/a:redhat:enterprise_linux:python3-decorator, p-cpe:/a:redhat:enterprise_linux:python3-dracclient, p-cpe:/a:redhat:enterprise_linux:python3-fixtures, p-cpe:/a:redhat:enterprise_linux:python3-futurist, p-cpe:/a:redhat:enterprise_linux:python3-glanceclient, p-cpe:/a:redhat:enterprise_linux:python3-hardware, p-cpe:/a:redhat:enterprise_linux:python3-hardware-detect, p-cpe:/a:redhat:enterprise_linux:python3-ironic-inspector-tests, p-cpe:/a:redhat:enterprise_linux:python3-ironic-lib, p-cpe:/a:redhat:enterprise_linux:python3-ironic-prometheus-exporter, p-cpe:/a:redhat:enterprise_linux:python3-ironic-python-agent, p-cpe:/a:redhat:enterprise_linux:python3-ironic-python-agent-tests, p-cpe:/a:redhat:enterprise_linux:python3-ironic-tests, p-cpe:/a:redhat:enterprise_linux:python3-keystoneauth1, p-cpe:/a:redhat:enterprise_linux:python3-keystoneclient, p-cpe:/a:redhat:enterprise_linux:python3-keystoneclient-tests, p-cpe:/a:redhat:enterprise_linux:python3-keystonemiddleware, p-cpe:/a:redhat:enterprise_linux:python3-kuryr-kubernetes, p-cpe:/a:redhat:enterprise_linux:python3-libnmstate, p-cpe:/a:redhat:enterprise_linux:python3-openstacksdk, p-cpe:/a:redhat:enterprise_linux:python3-openstacksdk-tests, p-cpe:/a:redhat:enterprise_linux:python3-os-service-types, p-cpe:/a:redhat:enterprise_linux:python3-os-traits, p-cpe:/a:redhat:enterprise_linux:python3-os-traits-tests, p-cpe:/a:redhat:enterprise_linux:python3-osc-lib, p-cpe:/a:redhat:enterprise_linux:python3-osc-lib-tests, p-cpe:/a:redhat:enterprise_linux:python3-oslo-cache, p-cpe:/a:redhat:enterprise_linux:python3-oslo-cache-tests, p-cpe:/a:redhat:enterprise_linux:python3-oslo-concurrency, p-cpe:/a:redhat:enterprise_linux:python3-oslo-concurrency-tests, p-cpe:/a:redhat:enterprise_linux:python3-oslo-config, p-cpe:/a:redhat:enterprise_linux:python3-oslo-context, p-cpe:/a:redhat:enterprise_linux:python3-oslo-context-tests, p-cpe:/a:redhat:enterprise_linux:python3-oslo-db, p-cpe:/a:redhat:enterprise_linux:python3-oslo-db-tests, p-cpe:/a:redhat:enterprise_linux:python3-oslo-i18n, p-cpe:/a:redhat:enterprise_linux:python3-oslo-log, p-cpe:/a:redhat:enterprise_linux:python3-oslo-log-tests, p-cpe:/a:redhat:enterprise_linux:python3-oslo-messaging, p-cpe:/a:redhat:enterprise_linux:python3-oslo-messaging-tests, p-cpe:/a:redhat:enterprise_linux:python3-oslo-middleware, p-cpe:/a:redhat:enterprise_linux:python3-oslo-middleware-tests, p-cpe:/a:redhat:enterprise_linux:python3-oslo-policy, p-cpe:/a:redhat:enterprise_linux:python3-oslo-policy-tests, p-cpe:/a:redhat:enterprise_linux:python3-oslo-rootwrap, p-cpe:/a:redhat:enterprise_linux:python3-oslo-rootwrap-tests, p-cpe:/a:redhat:enterprise_linux:python3-oslo-serialization, p-cpe:/a:redhat:enterprise_linux:python3-oslo-serialization-tests, p-cpe:/a:redhat:enterprise_linux:python3-oslo-service, p-cpe:/a:redhat:enterprise_linux:python3-oslo-service-tests, p-cpe:/a:redhat:enterprise_linux:python3-oslo-upgradecheck, p-cpe:/a:redhat:enterprise_linux:python3-oslo-utils, p-cpe:/a:redhat:enterprise_linux:python3-oslo-utils-tests, p-cpe:/a:redhat:enterprise_linux:python3-oslo-versionedobjects, p-cpe:/a:redhat:enterprise_linux:python3-oslo-versionedobjects-tests, p-cpe:/a:redhat:enterprise_linux:python3-osprofiler, p-cpe:/a:redhat:enterprise_linux:python3-pbr, p-cpe:/a:redhat:enterprise_linux:python3-perf, p-cpe:/a:redhat:enterprise_linux:python3-proliantutils, p-cpe:/a:redhat:enterprise_linux:python3-pycadf, p-cpe:/a:redhat:enterprise_linux:python3-requestsexceptions, p-cpe:/a:redhat:enterprise_linux:python3-scciclient, p-cpe:/a:redhat:enterprise_linux:python3-stevedore, p-cpe:/a:redhat:enterprise_linux:python3-sushy, p-cpe:/a:redhat:enterprise_linux:python3-sushy-oem-idrac, p-cpe:/a:redhat:enterprise_linux:python3-sushy-oem-idrac-tests, p-cpe:/a:redhat:enterprise_linux:python3-sushy-tests, p-cpe:/a:redhat:enterprise_linux:python3-swiftclient, p-cpe:/a:redhat:enterprise_linux:python3-tenacity, p-cpe:/a:redhat:enterprise_linux:python3-tooz, p-cpe:/a:redhat:enterprise_linux:python3-wrapt, p-cpe:/a:redhat:enterprise_linux:rtla, p-cpe:/a:redhat:enterprise_linux:runc, p-cpe:/a:redhat:enterprise_linux:rust-afterburn, p-cpe:/a:redhat:enterprise_linux:skopeo, p-cpe:/a:redhat:enterprise_linux:skopeo-tests, p-cpe:/a:redhat:enterprise_linux:spdlog, p-cpe:/a:redhat:enterprise_linux:spdlog-devel, p-cpe:/a:redhat:enterprise_linux:toolbox, p-cpe:/a:redhat:enterprise_linux:wasmedge, p-cpe:/a:redhat:enterprise_linux:wasmedge-devel, p-cpe:/a:redhat:enterprise_linux:wasmedge-rt

Required KB Items: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list, Host/cpu

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 10/31/2023

Vulnerability Publication Date: 9/6/2022

CISA Known Exploited Vulnerability Due Dates: 10/31/2023

Reference Information

CVE: CVE-2022-27664, CVE-2023-2727, CVE-2023-2728, CVE-2023-29824, CVE-2023-3089, CVE-2023-3153, CVE-2023-37788, CVE-2023-39318, CVE-2023-39319, CVE-2023-39321, CVE-2023-39322, CVE-2023-39325, CVE-2023-3978, CVE-2023-44487

CWE: 400, 416, 693, 770, 79

RHSA: 2023:5009