(RHSA-2022:8634) Moderate: OpenShift API for Data Protection (OADP) 1.1.1 security and bug fix update
Discription

OpenShift API for Data Protection (OADP) enables you to back up and restore application resources, persistent volume data, and internal container images to external backup storage. OADP enables both file system-based and snapshot-based backups for persistent volumes.

Security Fix(es) from Bugzilla:

* golang: crash in a golang.org/x/crypto/ssh server (CVE-2022-27191)

* golang: net/https: handle server errors after sending GOAWAY (CVE-2022-27664)

* golang: path/filepath: stack exhaustion in Glob (CVE-2022-30632)

* golang: encoding/gob: stack exhaustion in Decoder.Decode (CVE-2022-30635)

* golang: net/url: JoinPath does not strip relative path components in all circumstances (CVE-2022-32190)

For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.Read More

Back to Main

Subscribe for the latest news: