{"id":"RHBA-2023:1649","summary":"Red Hat Bug Fix Advisory: OpenShift Container Platform 4.11.35 packages and security update","modified":"2026-05-01T10:03:03Z","published":"2024-09-30T14:16:00Z","related":["GO-2021-0113"],"upstream":["CVE-2021-38561","CVE-2023-25725"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHBA-2023:1649"},{"type":"ARTICLE","url":"https://issues.redhat.com/browse/OCPBUGS-11407"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhba-2023_1649.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2021-38561"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2100495"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2021-38561"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2021-38561"},{"type":"ADVISORY","url":"https://pkg.go.dev/vuln/GO-2021-0113"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-25725"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2169089"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2023-25725"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-25725"},{"type":"ARTICLE","url":"https://www.haproxy.com/blog/february-2023-header-parser-fixed/"},{"type":"ARTICLE","url":"https://www.mail-archive.com/haproxy@formilux.org/msg43229.html"}],"affected":[{"package":{"name":"cri-o","ecosystem":"Red Hat:openshift:4.11::el8","purl":"pkg:rpm/redhat/cri-o"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.24.5-2.rhaos4.11.gitb007cb6.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2023:1649.json"}},{"package":{"name":"cri-o-debuginfo","ecosystem":"Red Hat:openshift:4.11::el8","purl":"pkg:rpm/redhat/cri-o-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.24.5-2.rhaos4.11.gitb007cb6.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2023:1649.json"}},{"package":{"name":"cri-o-debugsource","ecosystem":"Red Hat:openshift:4.11::el8","purl":"pkg:rpm/redhat/cri-o-debugsource"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.24.5-2.rhaos4.11.gitb007cb6.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2023:1649.json"}},{"package":{"name":"haproxy","ecosystem":"Red Hat:openshift:4.11::el8","purl":"pkg:rpm/redhat/haproxy"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.2.24-3.rhaos4.11.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2023:1649.json"}},{"package":{"name":"haproxy-debugsource","ecosystem":"Red Hat:openshift:4.11::el8","purl":"pkg:rpm/redhat/haproxy-debugsource"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.2.24-3.rhaos4.11.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2023:1649.json"}},{"package":{"name":"haproxy22","ecosystem":"Red Hat:openshift:4.11::el8","purl":"pkg:rpm/redhat/haproxy22"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.2.24-3.rhaos4.11.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2023:1649.json"}},{"package":{"name":"haproxy22-debuginfo","ecosystem":"Red Hat:openshift:4.11::el8","purl":"pkg:rpm/redhat/haproxy22-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.2.24-3.rhaos4.11.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2023:1649.json"}},{"package":{"name":"kernel-rt","ecosystem":"Red Hat:openshift:4.11::el8","purl":"pkg:rpm/redhat/kernel-rt"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.18.0-372.51.1.rt7.208.el8_6"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2023:1649.json"}},{"package":{"name":"kernel-rt-core","ecosystem":"Red Hat:openshift:4.11::el8","purl":"pkg:rpm/redhat/kernel-rt-core"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.18.0-372.51.1.rt7.208.el8_6"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2023:1649.json"}},{"package":{"name":"kernel-rt-debug","ecosystem":"Red Hat:openshift:4.11::el8","purl":"pkg:rpm/redhat/kernel-rt-debug"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.18.0-372.51.1.rt7.208.el8_6"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2023:1649.json"}},{"package":{"name":"kernel-rt-debug-core","ecosystem":"Red Hat:openshift:4.11::el8","purl":"pkg:rpm/redhat/kernel-rt-debug-core"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.18.0-372.51.1.rt7.208.el8_6"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2023:1649.json"}},{"package":{"name":"kernel-rt-debug-debuginfo","ecosystem":"Red Hat:openshift:4.11::el8","purl":"pkg:rpm/redhat/kernel-rt-debug-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.18.0-372.51.1.rt7.208.el8_6"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2023:1649.json"}},{"package":{"name":"kernel-rt-debug-devel","ecosystem":"Red Hat:openshift:4.11::el8","purl":"pkg:rpm/redhat/kernel-rt-debug-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.18.0-372.51.1.rt7.208.el8_6"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2023:1649.json"}},{"package":{"name":"kernel-rt-debug-kvm","ecosystem":"Red Hat:openshift:4.11::el8","purl":"pkg:rpm/redhat/kernel-rt-debug-kvm"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.18.0-372.51.1.rt7.208.el8_6"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2023:1649.json"}},{"package":{"name":"kernel-rt-debug-modules","ecosystem":"Red Hat:openshift:4.11::el8","purl":"pkg:rpm/redhat/kernel-rt-debug-modules"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.18.0-372.51.1.rt7.208.el8_6"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2023:1649.json"}},{"package":{"name":"kernel-rt-debug-modules-extra","ecosystem":"Red Hat:openshift:4.11::el8","purl":"pkg:rpm/redhat/kernel-rt-debug-modules-extra"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.18.0-372.51.1.rt7.208.el8_6"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2023:1649.json"}},{"package":{"name":"kernel-rt-debug-modules-internal","ecosystem":"Red Hat:openshift:4.11::el8","purl":"pkg:rpm/redhat/kernel-rt-debug-modules-internal"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.18.0-372.51.1.rt7.208.el8_6"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2023:1649.json"}},{"package":{"name":"kernel-rt-debuginfo","ecosystem":"Red Hat:openshift:4.11::el8","purl":"pkg:rpm/redhat/kernel-rt-debuginfo"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.18.0-372.51.1.rt7.208.el8_6"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2023:1649.json"}},{"package":{"name":"kernel-rt-debuginfo-common-x86_64","ecosystem":"Red Hat:openshift:4.11::el8","purl":"pkg:rpm/redhat/kernel-rt-debuginfo-common-x86_64"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.18.0-372.51.1.rt7.208.el8_6"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2023:1649.json"}},{"package":{"name":"kernel-rt-devel","ecosystem":"Red Hat:openshift:4.11::el8","purl":"pkg:rpm/redhat/kernel-rt-devel"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.18.0-372.51.1.rt7.208.el8_6"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2023:1649.json"}},{"package":{"name":"kernel-rt-kvm","ecosystem":"Red Hat:openshift:4.11::el8","purl":"pkg:rpm/redhat/kernel-rt-kvm"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.18.0-372.51.1.rt7.208.el8_6"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2023:1649.json"}},{"package":{"name":"kernel-rt-modules","ecosystem":"Red Hat:openshift:4.11::el8","purl":"pkg:rpm/redhat/kernel-rt-modules"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.18.0-372.51.1.rt7.208.el8_6"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2023:1649.json"}},{"package":{"name":"kernel-rt-modules-extra","ecosystem":"Red Hat:openshift:4.11::el8","purl":"pkg:rpm/redhat/kernel-rt-modules-extra"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.18.0-372.51.1.rt7.208.el8_6"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2023:1649.json"}},{"package":{"name":"kernel-rt-modules-internal","ecosystem":"Red Hat:openshift:4.11::el8","purl":"pkg:rpm/redhat/kernel-rt-modules-internal"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.18.0-372.51.1.rt7.208.el8_6"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2023:1649.json"}},{"package":{"name":"kernel-rt-selftests-internal","ecosystem":"Red Hat:openshift:4.11::el8","purl":"pkg:rpm/redhat/kernel-rt-selftests-internal"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.18.0-372.51.1.rt7.208.el8_6"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2023:1649.json"}},{"package":{"name":"openshift","ecosystem":"Red Hat:openshift:4.11::el8","purl":"pkg:rpm/redhat/openshift"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.11.0-202304042055.p0.g8f6c8a6.assembly.stream.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2023:1649.json"}},{"package":{"name":"openshift-hyperkube","ecosystem":"Red Hat:openshift:4.11::el8","purl":"pkg:rpm/redhat/openshift-hyperkube"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.11.0-202304042055.p0.g8f6c8a6.assembly.stream.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHBA-2023:1649.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:L"}]}