{"id":"RHSA-2024:5810","summary":"Red Hat Security Advisory: OpenShift Container Platform 4.12.64 security update","modified":"2026-04-07T10:04:38Z","published":"2024-10-02T11:05:41Z","related":["GO-2024-2599"],"upstream":["CVE-2023-45290","CVE-2024-34064","CVE-2024-34069"],"references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2024:5810"},{"type":"ARTICLE","url":"https://access.redhat.com/security/updates/classification/#important"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2268017"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2279451"},{"type":"ADVISORY","url":"https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_5810.json"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2023-45290"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2023-45290"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-45290"},{"type":"ARTICLE","url":"http://www.openwall.com/lists/oss-security/2024/03/08/4"},{"type":"ARTICLE","url":"https://go.dev/cl/569341"},{"type":"ARTICLE","url":"https://go.dev/issue/65383"},{"type":"ARTICLE","url":"https://groups.google.com/g/golang-announce/c/5pwGVUPoMbg"},{"type":"ADVISORY","url":"https://pkg.go.dev/vuln/GO-2024-2599"},{"type":"ARTICLE","url":"https://security.netapp.com/advisory/ntap-20240329-0004"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2024-34064"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=2279476"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2024-34064"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-34064"},{"type":"ARTICLE","url":"https://github.com/pallets/jinja/security/advisories/GHSA-h75v-3vvj-5mfj"},{"type":"REPORT","url":"https://access.redhat.com/security/cve/CVE-2024-34069"},{"type":"ADVISORY","url":"https://www.cve.org/CVERecord?id=CVE-2024-34069"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-34069"},{"type":"ARTICLE","url":"https://github.com/pallets/werkzeug/commit/3386395b24c7371db11a5b8eaac0c91da5362692"},{"type":"ARTICLE","url":"https://github.com/pallets/werkzeug/security/advisories/GHSA-2g68-c3qc-8985"}],"affected":[{"package":{"name":"openshift","ecosystem":"Red Hat:openshift:4.12::el8","purl":"pkg:rpm/redhat/openshift"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.12.0-202408131833.p0.g1eb8682.assembly.stream.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:5810.json"}},{"package":{"name":"openshift-hyperkube","ecosystem":"Red Hat:openshift:4.12::el8","purl":"pkg:rpm/redhat/openshift-hyperkube"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.12.0-202408131833.p0.g1eb8682.assembly.stream.el8"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:5810.json"}},{"package":{"name":"openshift","ecosystem":"Red Hat:openshift:4.12::el9","purl":"pkg:rpm/redhat/openshift"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.12.0-202408131833.p0.g1eb8682.assembly.stream.el9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:5810.json"}},{"package":{"name":"openshift-hyperkube","ecosystem":"Red Hat:openshift:4.12::el9","purl":"pkg:rpm/redhat/openshift-hyperkube"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:4.12.0-202408131833.p0.g1eb8682.assembly.stream.el9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:5810.json"}},{"package":{"name":"python-jinja2","ecosystem":"Red Hat:openshift_ironic:4.12::el9","purl":"pkg:rpm/redhat/python-jinja2"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.0.1-3.el9.1"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:5810.json"}},{"package":{"name":"python3-jinja2","ecosystem":"Red Hat:openshift_ironic:4.12::el9","purl":"pkg:rpm/redhat/python3-jinja2"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:3.0.1-3.el9.1"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:5810.json"}},{"package":{"name":"python-werkzeug","ecosystem":"Red Hat:openshift_ironic:4.12::el9","purl":"pkg:rpm/redhat/python-werkzeug"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.0.3-6.el9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:5810.json"}},{"package":{"name":"python3-werkzeug","ecosystem":"Red Hat:openshift_ironic:4.12::el9","purl":"pkg:rpm/redhat/python3-werkzeug"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0:2.0.3-6.el9"}]}],"database_specific":{"source":"https://security.access.redhat.com/data/osv/RHSA-2024:5810.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"}]}