{"id":"RHBA-2020:2215","summary":"Red Hat Bug Fix Advisory: OpenShift Container Platform 3.11 bug fix and enhancement update","modified":"2026-03-23T04:46:09.019799Z","published":"2024-09-16T03:45:57Z","upstream":["CVE-2020-8552"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHBA-2020:2215"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1633506"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1691678"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1745898"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1772594"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1774184"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1803090"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1803616"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1808068"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1814722"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1814804"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1824056"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1827744"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1829492"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1830158"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1832379"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1838001"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhba-2020_2215.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-8552"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1797909"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-8552"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-8552"},{"type":"ARTICLE","url":"https://github.com/kubernetes/kubernetes/issues/89378"},{"type":"ARTICLE","url":"https://groups.google.com/forum/#!topic/kubernetes-security-announce/2UOlsba2g0s"}],"affected":[{"package":{"name":"atomic-enterprise-service-catalog","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-enterprise-service-catalog"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:3.11.219-1.git.1.717017c.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2215.json"}},{"package":{"name":"atomic-enterprise-service-catalog-svcat","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-enterprise-service-catalog-svcat"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:3.11.219-1.git.1.717017c.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2215.json"}},{"package":{"name":"atomic-openshift","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-openshift"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.219-1.git.0.0c21387.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2215.json"}},{"package":{"name":"atomic-openshift-clients","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-openshift-clients"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.219-1.git.0.0c21387.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2215.json"}},{"package":{"name":"atomic-openshift-clients-redistributable","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-openshift-clients-redistributable"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.219-1.git.0.0c21387.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2215.json"}},{"package":{"name":"atomic-openshift-cluster-autoscaler","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-openshift-cluster-autoscaler"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.219-1.git.1.1ad3e34.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2215.json"}},{"package":{"name":"atomic-openshift-descheduler","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-openshift-descheduler"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.219-1.git.1.7e5b9ee.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2215.json"}},{"package":{"name":"atomic-openshift-docker-excluder","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-openshift-docker-excluder"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.219-1.git.0.0c21387.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2215.json"}},{"package":{"name":"atomic-openshift-dockerregistry","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-openshift-dockerregistry"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.219-1.git.1.8323991.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2215.json"}},{"package":{"name":"atomic-openshift-excluder","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-openshift-excluder"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.219-1.git.0.0c21387.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2215.json"}},{"package":{"name":"atomic-openshift-hyperkube","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-openshift-hyperkube"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.219-1.git.0.0c21387.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2215.json"}},{"package":{"name":"atomic-openshift-hypershift","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-openshift-hypershift"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.219-1.git.0.0c21387.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2215.json"}},{"package":{"name":"atomic-openshift-master","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-openshift-master"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.219-1.git.0.0c21387.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2215.json"}},{"package":{"name":"atomic-openshift-metrics-server","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-openshift-metrics-server"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.219-1.git.1.6fe54fb.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2215.json"}},{"package":{"name":"atomic-openshift-node","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-openshift-node"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.219-1.git.0.0c21387.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2215.json"}},{"package":{"name":"atomic-openshift-node-problem-detector","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-openshift-node-problem-detector"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.219-1.git.1.5ae8753.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2215.json"}},{"package":{"name":"atomic-openshift-pod","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-openshift-pod"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.219-1.git.0.0c21387.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2215.json"}},{"package":{"name":"atomic-openshift-sdn-ovs","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-openshift-sdn-ovs"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.219-1.git.0.0c21387.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2215.json"}},{"package":{"name":"atomic-openshift-service-idler","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-openshift-service-idler"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.219-1.git.1.958cdae.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2215.json"}},{"package":{"name":"atomic-openshift-template-service-broker","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-openshift-template-service-broker"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.219-1.git.0.0c21387.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2215.json"}},{"package":{"name":"atomic-openshift-tests","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-openshift-tests"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.219-1.git.0.0c21387.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2215.json"}},{"package":{"name":"golang-github-openshift-oauth-proxy","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/golang-github-openshift-oauth-proxy"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.219-1.git.1.076ae14.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2215.json"}},{"package":{"name":"golang-github-prometheus-alertmanager","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/golang-github-prometheus-alertmanager"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.219-1.git.1.9a593f8.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2215.json"}},{"package":{"name":"golang-github-prometheus-node_exporter","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/golang-github-prometheus-node_exporter"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.219-1.git.1.7fa9674.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2215.json"}},{"package":{"name":"golang-github-prometheus-prometheus","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/golang-github-prometheus-prometheus"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.219-1.git.1.3f6e657.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2215.json"}},{"package":{"name":"openshift-ansible","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/openshift-ansible"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.219-1.git.0.8845382.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2215.json"}},{"package":{"name":"openshift-ansible-docs","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/openshift-ansible-docs"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.219-1.git.0.8845382.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2215.json"}},{"package":{"name":"openshift-ansible-playbooks","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/openshift-ansible-playbooks"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.219-1.git.0.8845382.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2215.json"}},{"package":{"name":"openshift-ansible-roles","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/openshift-ansible-roles"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.219-1.git.0.8845382.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2215.json"}},{"package":{"name":"openshift-ansible-test","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/openshift-ansible-test"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.219-1.git.0.8845382.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2215.json"}},{"package":{"name":"openshift-enterprise-autoheal","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/openshift-enterprise-autoheal"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.219-1.git.1.c544df9.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2215.json"}},{"package":{"name":"openshift-enterprise-cluster-capacity","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/openshift-enterprise-cluster-capacity"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.219-1.git.1.ca1ee51.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2215.json"}},{"package":{"name":"openshift-kuryr","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/openshift-kuryr"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.219-1.git.1.717d59f.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2215.json"}},{"package":{"name":"openshift-kuryr-cni","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/openshift-kuryr-cni"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.219-1.git.1.717d59f.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2215.json"}},{"package":{"name":"openshift-kuryr-common","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/openshift-kuryr-common"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.219-1.git.1.717d59f.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2215.json"}},{"package":{"name":"openshift-kuryr-controller","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/openshift-kuryr-controller"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.219-1.git.1.717d59f.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2215.json"}},{"package":{"name":"prometheus","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/prometheus"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.219-1.git.1.3f6e657.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2215.json"}},{"package":{"name":"prometheus-alertmanager","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/prometheus-alertmanager"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.219-1.git.1.9a593f8.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2215.json"}},{"package":{"name":"prometheus-node-exporter","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/prometheus-node-exporter"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.219-1.git.1.7fa9674.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2215.json"}},{"package":{"name":"python2-kuryr-kubernetes","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/python2-kuryr-kubernetes"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.219-1.git.1.717d59f.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2020:2215.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"}]}