openshift-clients-redistributable vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the openshift-clients-redistributable package. This does not include vulnerabilities belonging to this package’s dependencies.

Vulnerability	Vulnerable Version
M Improper Input Validation	<0:4.8.0-202106281541.p0.git.1077b05.assembly.stream.el7
M Directory Traversal	<0:4.7.0-202103251046.p0.git.3957.c4da68b.el7
H Authorization Bypass Through User-Controlled Key	*
M Incorrect Permission Assignment for Critical Resource	<0:4.10.0-202202160023.p0.gf93da17.assembly.stream.el7
M Improper Input Validation	<0:4.8.0-202106281541.p0.git.1077b05.assembly.stream.el7
M Improper Validation of Array Index	<0:4.7.0-202103251046.p0.git.3957.c4da68b.el7
M Improper Validation of Array Index	<0:4.8.0-202106281541.p0.git.1077b05.assembly.stream.el7
M Improper Certificate Validation	<0:4.8.0-202106281541.p0.git.1077b05.assembly.stream.el7
L Improper Input Validation	*
M Improper Input Validation	<0:4.8.0-202106281541.p0.git.1077b05.assembly.stream.el7
M Cross-site Scripting (XSS)	<0:4.10.0-202202160023.p0.gf93da17.assembly.stream.el7
M Improper Input Validation	<0:4.8.0-202106281541.p0.git.1077b05.assembly.stream.el7
H Directory Traversal	<0:4.5.0-202102051529.p0.git.3612.61b096a.el7
H Improper Input Validation	<0:4.5.0-202102051529.p0.git.3612.61b096a.el7
M Improper Check for Dropped Privileges	<0:4.8.0-202106281541.p0.git.1077b05.assembly.stream.el7
H Cross-site Scripting (XSS)	<0:4.5.0-202102051529.p0.git.3612.61b096a.el7
H Incorrect Authorization	<0:4.5.0-202102051529.p0.git.3612.61b096a.el7
M Cross-site Scripting (XSS)	<0:4.8.0-202106281541.p0.git.1077b05.assembly.stream.el7
H Allocation of Resources Without Limits or Throttling	<0:4.5.0-202102051529.p0.git.3612.61b096a.el7
H Improper Input Validation	<0:4.5.0-202102051529.p0.git.3612.61b096a.el7
H Cross-site Scripting (XSS)	<0:4.5.0-202102051529.p0.git.3612.61b096a.el7
H Deserialization of Untrusted Data	<0:4.5.0-202102051529.p0.git.3612.61b096a.el7
H Cross-site Scripting (XSS)	<0:4.5.0-202102051529.p0.git.3612.61b096a.el7
H Link Following	<0:4.5.0-202102051529.p0.git.3612.61b096a.el7
H Cross-site Scripting (XSS)	<0:4.5.0-202102051529.p0.git.3612.61b096a.el7
H Missing Authorization	<0:4.6.0-202012172338.p0.git.3800.30af700.el7
M Improper Output Neutralization for Logs	<0:4.6.0-202010081244.p0.git.3794.4743d24.el7
M Improper Validation of Certificate with Host Mismatch	<0:4.6.0-202010081244.p0.git.3794.4743d24.el7
H Missing Authorization	<0:4.6.0-202012172338.p0.git.3800.30af700.el7
H Information Exposure	<0:4.6.0-202012172338.p0.git.3800.30af700.el7
H Missing Authorization	<0:4.6.0-202012172338.p0.git.3800.30af700.el7
M Missing Authorization	<0:4.6.0-202010081244.p0.git.3794.4743d24.el7
M Directory Traversal	<0:4.6.0-202010081244.p0.git.3794.4743d24.el7
M Insufficiently Protected Credentials	<0:4.6.0-202010081244.p0.git.3794.4743d24.el7
M Resource Exhaustion	<0:4.8.0-202106281541.p0.git.1077b05.assembly.stream.el7
M Information Exposure Through Log Files	<0:4.1.27-201912021146.git.0.a40116f.el7
M Authentication Bypass by Primary Weakness	<0:4.1.27-201912021146.git.0.a40116f.el7
M Link Following	<0:4.1.21-201910220952.git.0.493dbf6.el7
L Incorrect Permission Assignment for Critical Resource	<0:4.1.24-201911080309.git.0.c41acf2.el7
H Resource Exhaustion	<0:4.1.20-201910101746.git.0.a80aad5.el7
M Directory Traversal	<0:4.1.16-201909090609.git.0.2f97059.el7
H OS Command Injection	<0:4.3.3-202002140552.git.1.ff73b47.el7
H OS Command Injection	<0:4.2.20-202002140432.git.1.5dc67c9.el7
H OS Command Injection	<0:4.1.37-202002280447.git.0.543873e.el7
M Improper Access Control	<0:4.1.10-201908060758.git.0.d81afa6.el7
M Resource Exhaustion	<0:4.3.9-202003230116.git.0.3d3933c.el7
H XML External Entity (XXE) Injection	<0:4.6.0-202012172338.p0.git.3800.30af700.el7
H XML External Entity (XXE) Injection	<0:4.6.0-202012172338.p0.git.3800.30af700.el7
H Cross-site Scripting (XSS)	<0:4.3.25-202006060952.git.1.fd93102.el7
H Cross-site Scripting (XSS)	<0:4.4.0-202006061254.git.1.26cb6dc.el7
H Cross-site Scripting (XSS)	<0:4.4.0-202006061254.git.1.26cb6dc.el7
H Cross-site Scripting (XSS)	<0:4.3.25-202006060952.git.1.fd93102.el7
H Cross-site Scripting (XSS)	<0:4.3.25-202006060952.git.1.fd93102.el7
H Cross-site Scripting (XSS)	<0:4.4.0-202006061254.git.1.26cb6dc.el7
H Cross-site Request Forgery (CSRF)	<0:4.3.25-202006060952.git.1.fd93102.el7
H Cross-site Request Forgery (CSRF)	<0:4.4.0-202006061254.git.1.26cb6dc.el7
L Resource Exhaustion	*
M Information Exposure	*
M Improperly Controlled Sequential Memory Allocation	*
M HTTP Request Smuggling	*
L Insufficient Entropy	*
M Improper Privilege Management	<0:4.10.0-202207192015.p0.g45460a5.assembly.stream.el7
M Integer Overflow or Wraparound	<0:4.10.0-202207192015.p0.g45460a5.assembly.stream.el7
M Buffer Overflow	<0:4.10.0-202207192015.p0.g45460a5.assembly.stream.el7
M Missing Release of Resource after Effective Lifetime	*
M Resource Exhaustion	<0:4.10.0-202207192015.p0.g45460a5.assembly.stream.el7
M Unchecked Return Value	<0:4.10.0-202207192015.p0.g45460a5.assembly.stream.el7
M Incorrect Authorization	<0:4.10.0-202207192015.p0.g45460a5.assembly.stream.el7
M Integer Overflow or Wraparound	*
M Information Exposure	<0:4.10.0-202202160023.p0.gf93da17.assembly.stream.el7
M Information Exposure	<0:4.9.0-202202140924.p0.g340e212.assembly.stream.el7
M Information Exposure	<0:4.9.0-202202140924.p0.g340e212.assembly.stream.el7
M Resource Exhaustion	<0:4.9.0-202202140924.p0.g340e212.assembly.stream.el7
M Resource Exhaustion	<0:4.10.0-202202160023.p0.gf93da17.assembly.stream.el7
M Resource Exhaustion	<0:4.9.0-202202140924.p0.g340e212.assembly.stream.el7
M Access of Resource Using Incompatible Type ('Type Confusion')	<0:4.10.0-202202160023.p0.gf93da17.assembly.stream.el7
M Improper Input Validation	<0:4.10.0-202202160023.p0.gf93da17.assembly.stream.el7
L Improper Input Validation	*
H Directory Traversal	<0:4.3.1-202001310552.git.1.075d46a.el7
L Resource Exhaustion	*
M Race Condition	<0:4.9.0-202202140924.p0.g340e212.assembly.stream.el7
M Race Condition	<0:4.9.0-202202140924.p0.g340e212.assembly.stream.el7
M Improper Input Validation	<0:4.9.0-202202140924.p0.g340e212.assembly.stream.el7
M Improper Input Validation	<0:4.9.0-202202140924.p0.g340e212.assembly.stream.el7
M Resource Exhaustion	<0:4.8.0-202107292313.p0.git.1077b05.assembly.stream.el7
M Resource Exhaustion	<0:4.7.0-202107292242.p0.git.8b4b094.assembly.stream.el7
M Improper Input Validation	<0:4.7.0-202107292242.p0.git.8b4b094.assembly.stream.el7
M Improper Input Validation	<0:4.8.0-202107292313.p0.git.1077b05.assembly.stream.el7
M Improper Input Validation	<0:4.7.0-202107292242.p0.git.8b4b094.assembly.stream.el7
M Improper Input Validation	<0:4.8.0-202107292313.p0.git.1077b05.assembly.stream.el7
H Improper Check for Unusual or Exceptional Conditions	<0:4.7.0-202106252127.p0.git.8b4b094.el7
M Improper Cross-boundary Removal of Sensitive Data	<0:4.6.0-202010081244.p0.git.3794.4743d24.el7
M Loop with Unreachable Exit Condition ('Infinite Loop')	<0:4.6.0-202010081244.p0.git.3794.4743d24.el7
M Improper Validation of Certificate with Host Mismatch	<0:4.10.0-202202160023.p0.gf93da17.assembly.stream.el7
H Heap-based Buffer Overflow	<0:4.3.3-202002140552.git.1.ff73b47.el7
H Out-of-Bounds	<0:4.7.0-202106252127.p0.git.8b4b094.el7
H Heap-based Buffer Overflow	<0:4.3.1-202001310552.git.1.075d46a.el7
M Incorrect Calculation	<0:4.7.0-202103251046.p0.git.3957.c4da68b.el7
M Incorrect Calculation	<0:4.8.0-202106281541.p0.git.1077b05.assembly.stream.el7
H Improper Certificate Validation	<0:4.6.0-202012172338.p0.git.3800.30af700.el7
L Race Condition	<0:4.4.0-202011122017.p0.git.3445.6937a03.el7
M Race Condition	<0:4.6.0-202010081244.p0.git.3794.4743d24.el7
M Loop with Unreachable Exit Condition ('Infinite Loop')	<0:4.6.0-202010081244.p0.git.3794.4743d24.el7
L Loop with Unreachable Exit Condition ('Infinite Loop')	<0:4.4.0-202011122017.p0.git.3445.6937a03.el7
H Insecure Temporary File	<0:4.5.0-202102051529.p0.git.3612.61b096a.el7
H Improper Certificate Validation	<0:4.3.1-202001310552.git.1.075d46a.el7
M HTTP Request Smuggling	<0:4.2.4-201911010432.git.1.30c33a5.el7
H Resource Exhaustion	<0:4.1.14-201908290858.git.0.3bd3467.el7
H Resource Exhaustion	<0:4.1.14-201908290858.git.0.3bd3467.el7
M Improper Input Validation	<0:4.7.0-202107292242.p0.git.8b4b094.assembly.stream.el7
M Improper Input Validation	<0:4.8.0-202107292313.p0.git.1077b05.assembly.stream.el7
M Resource Exhaustion	<0:4.8.0-202107292313.p0.git.1077b05.assembly.stream.el7
M Loop with Unreachable Exit Condition ('Infinite Loop')	*
M Improper Input Validation	<0:4.8.0-202107292313.p0.git.1077b05.assembly.stream.el7
M Improper Input Validation	<0:4.7.0-202107292242.p0.git.8b4b094.assembly.stream.el7
M Loop with Unreachable Exit Condition ('Infinite Loop')	*
L Improper Handling of Length Parameter Inconsistency	<0:4.3.31-202007250052.p0.git.3329.59998b9.el7
M Use After Free	<0:4.3.7-202003130552.git.0.6027a27.el7
H Insecure Temporary File	<0:4.5.0-202102051529.p0.git.3612.61b096a.el7

openshift-clients-redistributable vulnerabilities

Direct Vulnerabilities

How to fix?