You are here
Home > Preporuke > Sigurnosni nedostaci programskog paketa machine-os-content-container

Sigurnosni nedostaci programskog paketa machine-os-content-container

  • Detalji os-a: WN7
  • Važnost: IMP
  • Operativni sustavi: L
  • Kategorije: LRH

Hash: SHA256

Red Hat Security Advisory

Synopsis: Important: OpenShift Container Platform 4.1.24 machine-os-content-container security update
Advisory ID: RHSA-2019:3941-01
Product: Red Hat OpenShift Enterprise
Advisory URL:
Issue date: 2019-11-21
CVE Names: CVE-2018-12207 CVE-2019-14287 CVE-2019-15718

1. Summary:

Red Hat OpenShift Container Platform release 4.1.24 is now available with
updates to packages and images that fix several bugs and add enhancements.

Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.

2. Description:

Red Hat OpenShift Container Platform is Red Hat’s cloud computing
Kubernetes application platform solution designed for on-premise or private
cloud deployments.

This is a text-only advisory for the machine-os-content container image,
which includes RPM packages for Red Hat Enterprise Linux CoreOS.

Security Fix(es):

* A flaw was found in the way Intel CPUs handle inconsistency between,
virtual to physical memory address translations in CPU’s local cache and
system software’s Paging structure entries. A privileged guest user may use
this flaw to induce a hardware Machine Check Error on the host processor,
resulting in a severe DoS scenario by halting the processor.

System software like OS OR Virtual Machine Monitor (VMM) use virtual memory
system for storing program instructions and data in memory. Virtual Memory
system uses Paging structures like Page Tables and Page Directories to
manage system memory. The processor’s Memory Management Unit (MMU) uses
Paging structure entries to translate program’s virtual memory addresses
to physical memory addresses. The processor stores these address
translations into its local cache buffer called – Translation Lookaside
Buffer (TLB). TLB has two parts, one for instructions and other for data

System software can modify its Paging structure entries to change address
mappings OR certain attributes like page size etc. Upon such Paging
structure alterations in memory, system software must invalidate the
corresponding address translations in the processor’s TLB cache. But before
this TLB invalidation takes place, a privileged guest user may trigger an
instruction fetch operation, which could use an already cached, but now
invalid, virtual to physical address translation from Instruction TLB
(ITLB). Thus accessing an invalid physical memory address and resulting in
halting the processor due to the Machine Check Error (MCE) on Page Size
Change. (CVE-2018-12207)

* A flaw was found in the way sudo implemented running commands with an
arbitrary user ID. If a sudoers entry is written to allow users to run a
command as any user except root, this flaw can be used by an attacker to
bypass that restriction. (CVE-2019-14287)

* An improper authorization flaw was discovered in systemd-resolved in the
way it configures the exposed DBus interface org.freedesktop.resolve1. An
unprivileged local user could call all DBus methods, even when marked as
privileged operations. An attacker could abuse this flaw by changing the
DNS, Search Domain, LLMNR, DNSSEC, and other network link settings without
any authorization, giving them control of the network names resolution
process and causing the system to communicate with wrong or malicious
servers. (CVE-2019-15718)

For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.

3. Solution:

For OpenShift Container Platform 4.1 see the following documentation, which
will be updated shortly for release 4.1.24, for important instructions on
how to upgrade your cluster and fully apply this asynchronous errata

4. Bugs fixed (

1646768 – CVE-2018-12207 hw: Machine Check Error on Page Size Change (IFU)
1746057 – CVE-2019-15718 systemd: systemd-resolved allows unprivileged users to configure DNS
1760531 – CVE-2019-14287 sudo: Privilege escalation via ‘Runas’ specification with ‘ALL’ keyword

5. References:

6. Contact:

The Red Hat security contact is <>. More contact
details at

Copyright 2019 Red Hat, Inc.
Version: GnuPG v1


RHSA-announce mailing list

AutorToni Vugdelija
Cert idNCERT-REF-2019-11-0001-ADV
More in Preporuke
Sigurnosni nedostatak programskog paketa runc

Otkriven je sigurnosni nedostatak u programskom paketu runc za Red Hat OpenShift Container Platform. Otkriveni nedostatak potencijalnim napadačima omogućuje zaobilaženje...