{"id":"RHSA-2021:0079","summary":"Red Hat Security Advisory: OpenShift Container Platform 3.11.374 bug fix and security update","modified":"2026-03-27T10:02:20Z","published":"2024-09-18T04:29:41Z","upstream":["CVE-2019-11840","CVE-2020-26137","CVE-2020-8554"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2021:0079"},{"type":"ARTICLE","url":"https://access.redhat.com/security/updates/classification/#moderate"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1691529"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1866789"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1870050"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1881319"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1883632"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1891051"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_0079.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2019-11840"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2019-11840"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2019-11840"},{"type":"ARTICLE","url":"https://groups.google.com/forum/#!msg/golang-announce/tjyNcJxb2vQ/n0NRBziSCAAJ"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-8554"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-8554"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-8554"},{"type":"ARTICLE","url":"https://blog.champtar.fr/K8S_MITM_LoadBalancer_ExternalIPs/"},{"type":"ARTICLE","url":"https://groups.google.com/g/kubernetes-security-announce/c/iZWsF9nbKE8"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2020-26137"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2020-26137"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-26137"}],"affected":[{"package":{"name":"atomic-enterprise-service-catalog","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-enterprise-service-catalog"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:3.11.374-1.git.1675.738abcc.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0079.json"}},{"package":{"name":"atomic-enterprise-service-catalog-svcat","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-enterprise-service-catalog-svcat"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1:3.11.374-1.git.1675.738abcc.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0079.json"}},{"package":{"name":"atomic-openshift","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-openshift"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.374-1.git.0.ebd3ee9.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0079.json"}},{"package":{"name":"atomic-openshift-clients","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-openshift-clients"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.374-1.git.0.ebd3ee9.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0079.json"}},{"package":{"name":"atomic-openshift-clients-redistributable","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-openshift-clients-redistributable"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.374-1.git.0.ebd3ee9.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0079.json"}},{"package":{"name":"atomic-openshift-cluster-autoscaler","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-openshift-cluster-autoscaler"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.374-1.git.0.2996f62.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0079.json"}},{"package":{"name":"atomic-openshift-descheduler","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-openshift-descheduler"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.374-1.git.299.f128e96.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0079.json"}},{"package":{"name":"atomic-openshift-docker-excluder","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-openshift-docker-excluder"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.374-1.git.0.ebd3ee9.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0079.json"}},{"package":{"name":"atomic-openshift-dockerregistry","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-openshift-dockerregistry"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.374-1.git.481.e6a880c.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0079.json"}},{"package":{"name":"atomic-openshift-excluder","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-openshift-excluder"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.374-1.git.0.ebd3ee9.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0079.json"}},{"package":{"name":"atomic-openshift-hyperkube","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-openshift-hyperkube"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.374-1.git.0.ebd3ee9.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0079.json"}},{"package":{"name":"atomic-openshift-hypershift","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-openshift-hypershift"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.374-1.git.0.ebd3ee9.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0079.json"}},{"package":{"name":"atomic-openshift-master","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-openshift-master"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.374-1.git.0.ebd3ee9.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0079.json"}},{"package":{"name":"atomic-openshift-metrics-server","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-openshift-metrics-server"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.374-1.git.53.9df25a9.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0079.json"}},{"package":{"name":"atomic-openshift-node","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-openshift-node"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.374-1.git.0.ebd3ee9.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0079.json"}},{"package":{"name":"atomic-openshift-node-problem-detector","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-openshift-node-problem-detector"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.374-1.git.263.28335fb.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0079.json"}},{"package":{"name":"atomic-openshift-pod","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-openshift-pod"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.374-1.git.0.ebd3ee9.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0079.json"}},{"package":{"name":"atomic-openshift-sdn-ovs","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-openshift-sdn-ovs"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.374-1.git.0.ebd3ee9.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0079.json"}},{"package":{"name":"atomic-openshift-service-idler","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-openshift-service-idler"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.374-1.git.15.523a1f7.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0079.json"}},{"package":{"name":"atomic-openshift-template-service-broker","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-openshift-template-service-broker"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.374-1.git.0.ebd3ee9.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0079.json"}},{"package":{"name":"atomic-openshift-tests","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-openshift-tests"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.374-1.git.0.ebd3ee9.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0079.json"}},{"package":{"name":"atomic-openshift-web-console","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/atomic-openshift-web-console"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.374-1.git.647.9e78d83.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0079.json"}},{"package":{"name":"golang-github-openshift-oauth-proxy","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/golang-github-openshift-oauth-proxy"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.374-1.git.439.966c536.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0079.json"}},{"package":{"name":"golang-github-prometheus-alertmanager","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/golang-github-prometheus-alertmanager"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.374-1.git.0.3abd2a5.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0079.json"}},{"package":{"name":"golang-github-prometheus-node_exporter","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/golang-github-prometheus-node_exporter"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.374-1.git.1062.490d6d5.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0079.json"}},{"package":{"name":"golang-github-prometheus-prometheus","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/golang-github-prometheus-prometheus"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.374-1.git.5026.29379c4.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0079.json"}},{"package":{"name":"openshift-enterprise-autoheal","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/openshift-enterprise-autoheal"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.374-1.git.218.9cf7939.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0079.json"}},{"package":{"name":"openshift-enterprise-cluster-capacity","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/openshift-enterprise-cluster-capacity"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.374-1.git.379.80bd08f.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0079.json"}},{"package":{"name":"prometheus","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/prometheus"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.374-1.git.5026.29379c4.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0079.json"}},{"package":{"name":"prometheus-alertmanager","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/prometheus-alertmanager"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.374-1.git.0.3abd2a5.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0079.json"}},{"package":{"name":"prometheus-node-exporter","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/prometheus-node-exporter"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.11.374-1.git.1062.490d6d5.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0079.json"}},{"package":{"name":"python-urllib3","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/python-urllib3"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.26.2-1.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0079.json"}},{"package":{"name":"python2-urllib3","ecosystem":"Red Hat:openshift:3.11::el7","purl":"pkg:rpm/redhat/python2-urllib3"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:1.26.2-1.el7"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2021:0079.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"}]}