Red Hat update for OpenShift Container Platform (openshift)

CERT-LatestNews ThreatsCybercrime VulnerabilitiesAll VulnerabilitiesApplications VulnerabilitiesLinux VulnerabilitiesOS

1) UNIX symbolic link following. Severity: Low. CVSSv3: CVE-ID: CVE-2019-11251. CWE-ID: Description. CWE-61 – UNIX Symbolic Link (Symlink) Following The vulnerability allows a local user to escalate privileges on the system. The vulnerability exists due to a symlink following issue in kubectl cp.