Vulnerability Database
Blog
FAQ
Docs
RHBA-2019:0636
See a problem?
Please try reporting it
to the source
first.
Source
https://access.redhat.com/errata/RHBA-2019:0636
Import Source
https://security.access.redhat.com/data/osv/RHBA-2019:0636.json
JSON Data
https://api.osv.dev/v1/vulns/RHBA-2019:0636
Related
CVE-2019-1002101
Published
2024-09-16T02:14:50Z
Modified
2024-11-22T12:46:56Z
Severity
5.3 (Medium)
CVSS_V3 - CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N
CVSS Calculator
Summary
Red Hat Bug Fix Advisory: OpenShift Container Platform 3.11 bug fix and enhancement update
Details
References
https://access.redhat.com/errata/RHBA-2019:0636
https://bugzilla.redhat.com/show_bug.cgi?id=1268877
https://bugzilla.redhat.com/show_bug.cgi?id=1414227
https://bugzilla.redhat.com/show_bug.cgi?id=1486210
https://bugzilla.redhat.com/show_bug.cgi?id=1529482
https://bugzilla.redhat.com/show_bug.cgi?id=1548640
https://bugzilla.redhat.com/show_bug.cgi?id=1569432
https://bugzilla.redhat.com/show_bug.cgi?id=1586015
https://bugzilla.redhat.com/show_bug.cgi?id=1598139
https://bugzilla.redhat.com/show_bug.cgi?id=1623261
https://bugzilla.redhat.com/show_bug.cgi?id=1623612
https://bugzilla.redhat.com/show_bug.cgi?id=1639739
https://bugzilla.redhat.com/show_bug.cgi?id=1641221
https://bugzilla.redhat.com/show_bug.cgi?id=1642589
https://bugzilla.redhat.com/show_bug.cgi?id=1644084
https://bugzilla.redhat.com/show_bug.cgi?id=1647348
https://bugzilla.redhat.com/show_bug.cgi?id=1655641
https://bugzilla.redhat.com/show_bug.cgi?id=1657003
https://bugzilla.redhat.com/show_bug.cgi?id=1657769
https://bugzilla.redhat.com/show_bug.cgi?id=1658387
https://bugzilla.redhat.com/show_bug.cgi?id=1659442
https://bugzilla.redhat.com/show_bug.cgi?id=1662312
https://bugzilla.redhat.com/show_bug.cgi?id=1666491
https://bugzilla.redhat.com/show_bug.cgi?id=1667302
https://bugzilla.redhat.com/show_bug.cgi?id=1668317
https://bugzilla.redhat.com/show_bug.cgi?id=1669560
https://bugzilla.redhat.com/show_bug.cgi?id=1670473
https://bugzilla.redhat.com/show_bug.cgi?id=1672011
https://bugzilla.redhat.com/show_bug.cgi?id=1672904
https://bugzilla.redhat.com/show_bug.cgi?id=1674170
https://bugzilla.redhat.com/show_bug.cgi?id=1675133
https://bugzilla.redhat.com/show_bug.cgi?id=1677509
https://bugzilla.redhat.com/show_bug.cgi?id=1677545
https://bugzilla.redhat.com/show_bug.cgi?id=1679159
https://bugzilla.redhat.com/show_bug.cgi?id=1679453
https://bugzilla.redhat.com/show_bug.cgi?id=1679613
https://bugzilla.redhat.com/show_bug.cgi?id=1683519
https://bugzilla.redhat.com/show_bug.cgi?id=1685072
https://bugzilla.redhat.com/show_bug.cgi?id=1685243
https://bugzilla.redhat.com/show_bug.cgi?id=1685606
https://bugzilla.redhat.com/show_bug.cgi?id=1685618
https://bugzilla.redhat.com/show_bug.cgi?id=1685655
https://bugzilla.redhat.com/show_bug.cgi?id=1685970
https://bugzilla.redhat.com/show_bug.cgi?id=1686449
https://bugzilla.redhat.com/show_bug.cgi?id=1686590
https://bugzilla.redhat.com/show_bug.cgi?id=1686941
https://bugzilla.redhat.com/show_bug.cgi?id=1689366
https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhba-2019_0636.json
https://access.redhat.com/security/cve/CVE-2019-1002101
https://bugzilla.redhat.com/show_bug.cgi?id=1685213
https://www.cve.org/CVERecord?id=CVE-2019-1002101
https://nvd.nist.gov/vuln/detail/CVE-2019-1002101
https://discuss.kubernetes.io/t/announce-security-release-of-kubernetes-kubectl-potential-directory-traversal-releases-1-11-9-1-12-7-1-13-5-and-1-14-0-cve-2019-1002101/5712
Affected packages
Red Hat:openshift:3.11::el7
/
atomic-enterprise-service-catalog
Package
Name
atomic-enterprise-service-catalog
Purl
pkg:rpm/redhat/atomic-enterprise-service-catalog
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
1:3.11.98-1.git.0.a7877b0.el7
Red Hat:openshift:3.11::el7
/
atomic-enterprise-service-catalog-svcat
Package
Name
atomic-enterprise-service-catalog-svcat
Purl
pkg:rpm/redhat/atomic-enterprise-service-catalog-svcat
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
1:3.11.98-1.git.0.a7877b0.el7
Red Hat:openshift:3.11::el7
/
atomic-openshift
Package
Name
atomic-openshift
Purl
pkg:rpm/redhat/atomic-openshift
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:3.11.98-1.git.0.0cbaff3.el7
Red Hat:openshift:3.11::el7
/
atomic-openshift-clients
Package
Name
atomic-openshift-clients
Purl
pkg:rpm/redhat/atomic-openshift-clients
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:3.11.98-1.git.0.0cbaff3.el7
Red Hat:openshift:3.11::el7
/
atomic-openshift-clients-redistributable
Package
Name
atomic-openshift-clients-redistributable
Purl
pkg:rpm/redhat/atomic-openshift-clients-redistributable
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:3.11.98-1.git.0.0cbaff3.el7
Red Hat:openshift:3.11::el7
/
atomic-openshift-cluster-autoscaler
Package
Name
atomic-openshift-cluster-autoscaler
Purl
pkg:rpm/redhat/atomic-openshift-cluster-autoscaler
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:3.11.98-1.git.0.3b82207.el7
Red Hat:openshift:3.11::el7
/
atomic-openshift-descheduler
Package
Name
atomic-openshift-descheduler
Purl
pkg:rpm/redhat/atomic-openshift-descheduler
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:3.11.98-1.git.153.6c2426d.el7
Red Hat:openshift:3.11::el7
/
atomic-openshift-docker-excluder
Package
Name
atomic-openshift-docker-excluder
Purl
pkg:rpm/redhat/atomic-openshift-docker-excluder
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:3.11.98-1.git.0.0cbaff3.el7
Red Hat:openshift:3.11::el7
/
atomic-openshift-dockerregistry
Package
Name
atomic-openshift-dockerregistry
Purl
pkg:rpm/redhat/atomic-openshift-dockerregistry
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:3.11.98-1.git.0.27979f1.el7
Red Hat:openshift:3.11::el7
/
atomic-openshift-excluder
Package
Name
atomic-openshift-excluder
Purl
pkg:rpm/redhat/atomic-openshift-excluder
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:3.11.98-1.git.0.0cbaff3.el7
Red Hat:openshift:3.11::el7
/
atomic-openshift-hyperkube
Package
Name
atomic-openshift-hyperkube
Purl
pkg:rpm/redhat/atomic-openshift-hyperkube
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:3.11.98-1.git.0.0cbaff3.el7
Red Hat:openshift:3.11::el7
/
atomic-openshift-hypershift
Package
Name
atomic-openshift-hypershift
Purl
pkg:rpm/redhat/atomic-openshift-hypershift
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:3.11.98-1.git.0.0cbaff3.el7
Red Hat:openshift:3.11::el7
/
atomic-openshift-master
Package
Name
atomic-openshift-master
Purl
pkg:rpm/redhat/atomic-openshift-master
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:3.11.98-1.git.0.0cbaff3.el7
Red Hat:openshift:3.11::el7
/
atomic-openshift-metrics-server
Package
Name
atomic-openshift-metrics-server
Purl
pkg:rpm/redhat/atomic-openshift-metrics-server
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:3.11.98-1.git.52.0623d01.el7
Red Hat:openshift:3.11::el7
/
atomic-openshift-node
Package
Name
atomic-openshift-node
Purl
pkg:rpm/redhat/atomic-openshift-node
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:3.11.98-1.git.0.0cbaff3.el7
Red Hat:openshift:3.11::el7
/
atomic-openshift-node-problem-detector
Package
Name
atomic-openshift-node-problem-detector
Purl
pkg:rpm/redhat/atomic-openshift-node-problem-detector
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:3.11.98-1.git.0.83348c7.el7
Red Hat:openshift:3.11::el7
/
atomic-openshift-pod
Package
Name
atomic-openshift-pod
Purl
pkg:rpm/redhat/atomic-openshift-pod
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:3.11.98-1.git.0.0cbaff3.el7
Red Hat:openshift:3.11::el7
/
atomic-openshift-sdn-ovs
Package
Name
atomic-openshift-sdn-ovs
Purl
pkg:rpm/redhat/atomic-openshift-sdn-ovs
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:3.11.98-1.git.0.0cbaff3.el7
Red Hat:openshift:3.11::el7
/
atomic-openshift-service-idler
Package
Name
atomic-openshift-service-idler
Purl
pkg:rpm/redhat/atomic-openshift-service-idler
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:3.11.98-1.git.14.1793066.el7
Red Hat:openshift:3.11::el7
/
atomic-openshift-template-service-broker
Package
Name
atomic-openshift-template-service-broker
Purl
pkg:rpm/redhat/atomic-openshift-template-service-broker
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:3.11.98-1.git.0.0cbaff3.el7
Red Hat:openshift:3.11::el7
/
atomic-openshift-tests
Package
Name
atomic-openshift-tests
Purl
pkg:rpm/redhat/atomic-openshift-tests
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:3.11.98-1.git.0.0cbaff3.el7
Red Hat:openshift:3.11::el7
/
atomic-openshift-web-console
Package
Name
atomic-openshift-web-console
Purl
pkg:rpm/redhat/atomic-openshift-web-console
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:3.11.98-1.git.50.bd70c76.el7
Red Hat:openshift:3.11::el7
/
golang-github-openshift-oauth-proxy
Package
Name
golang-github-openshift-oauth-proxy
Purl
pkg:rpm/redhat/golang-github-openshift-oauth-proxy
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:3.11.98-1.git.0.fd9716c.el7
Red Hat:openshift:3.11::el7
/
golang-github-prometheus-alertmanager
Package
Name
golang-github-prometheus-alertmanager
Purl
pkg:rpm/redhat/golang-github-prometheus-alertmanager
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:3.11.98-1.git.92.7ebe477.el7
Red Hat:openshift:3.11::el7
/
golang-github-prometheus-node_exporter
Package
Name
golang-github-prometheus-node_exporter
Purl
pkg:rpm/redhat/golang-github-prometheus-node_exporter
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:3.11.98-1.git.0.b02f11c.el7
Red Hat:openshift:3.11::el7
/
golang-github-prometheus-prometheus
Package
Name
golang-github-prometheus-prometheus
Purl
pkg:rpm/redhat/golang-github-prometheus-prometheus
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:3.11.98-1.git.0.61907ad.el7
Red Hat:openshift:3.11::el7
/
openshift-ansible
Package
Name
openshift-ansible
Purl
pkg:rpm/redhat/openshift-ansible
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:3.11.98-1.git.0.3cfa7c3.el7
Red Hat:openshift:3.11::el7
/
openshift-ansible-docs
Package
Name
openshift-ansible-docs
Purl
pkg:rpm/redhat/openshift-ansible-docs
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:3.11.98-1.git.0.3cfa7c3.el7
Red Hat:openshift:3.11::el7
/
openshift-ansible-playbooks
Package
Name
openshift-ansible-playbooks
Purl
pkg:rpm/redhat/openshift-ansible-playbooks
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:3.11.98-1.git.0.3cfa7c3.el7
Red Hat:openshift:3.11::el7
/
openshift-ansible-roles
Package
Name
openshift-ansible-roles
Purl
pkg:rpm/redhat/openshift-ansible-roles
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:3.11.98-1.git.0.3cfa7c3.el7
Red Hat:openshift:3.11::el7
/
openshift-ansible-test
Package
Name
openshift-ansible-test
Purl
pkg:rpm/redhat/openshift-ansible-test
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:3.11.98-1.git.0.3cfa7c3.el7
Red Hat:openshift:3.11::el7
/
openshift-enterprise-autoheal
Package
Name
openshift-enterprise-autoheal
Purl
pkg:rpm/redhat/openshift-enterprise-autoheal
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:3.11.98-1.git.0.6737a19.el7
Red Hat:openshift:3.11::el7
/
openshift-enterprise-cluster-capacity
Package
Name
openshift-enterprise-cluster-capacity
Purl
pkg:rpm/redhat/openshift-enterprise-cluster-capacity
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:3.11.98-1.git.0.deb9250.el7
Red Hat:openshift:3.11::el7
/
prometheus
Package
Name
prometheus
Purl
pkg:rpm/redhat/prometheus
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:3.11.98-1.git.0.61907ad.el7
Red Hat:openshift:3.11::el7
/
prometheus-alertmanager
Package
Name
prometheus-alertmanager
Purl
pkg:rpm/redhat/prometheus-alertmanager
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:3.11.98-1.git.92.7ebe477.el7
Red Hat:openshift:3.11::el7
/
prometheus-node-exporter
Package
Name
prometheus-node-exporter
Purl
pkg:rpm/redhat/prometheus-node-exporter
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:3.11.98-1.git.0.b02f11c.el7
Red Hat:openshift:3.11::el7
/
python-certifi
Package
Name
python-certifi
Purl
pkg:rpm/redhat/python-certifi
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2018.4.16-2.el7
Red Hat:openshift:3.11::el7
/
python-docker
Package
Name
python-docker
Purl
pkg:rpm/redhat/python-docker
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.4.2-2.el7
Red Hat:openshift:3.11::el7
/
python-libcloud
Package
Name
python-libcloud
Purl
pkg:rpm/redhat/python-libcloud
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.2.1-20180102gitd701bf9.el7
Red Hat:openshift:3.11::el7
/
python2-certifi
Package
Name
python2-certifi
Purl
pkg:rpm/redhat/python2-certifi
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2018.4.16-2.el7
Red Hat:openshift:3.11::el7
/
rubygem-fluent-plugin-viaq_data_model
Package
Name
rubygem-fluent-plugin-viaq_data_model
Purl
pkg:rpm/redhat/rubygem-fluent-plugin-viaq_data_model
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:0.0.18-1.el7
Red Hat:openshift:3.11::el7
/
rubygem-fluent-plugin-viaq_data_model-doc
Package
Name
rubygem-fluent-plugin-viaq_data_model-doc
Purl
pkg:rpm/redhat/rubygem-fluent-plugin-viaq_data_model-doc
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:0.0.18-1.el7
RHBA-2019:0636 - OSV