VDB
RHSA-2021%3A1007
RHSA-2021%3A1007
PUBLISHED
CVSS 8.600000381469727 HIGH
A flaw was found in github.com/gogo/protobuf before 1.3.2 that allows an out-of-bounds access when unmarshalling certain protobuf objects. This flaw allows a remote attacker to send crafted protobuf messages, causing panic and resulting in a denial of service. The highest threat from this vulnerability is to availability.
Risk Scores
CVSS 3.1
8.600000381469727
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Red Hat | openshift4/ose-clusterresourceoverride-rhel8-operator@sha256:bdc4bdcbebd0e13b68e5f085b68624968c5b7a83b6c72fe689bf6e496a12da0a_s390x as a component of Red Hat OpenShift Container Platform 4.7 | * |
| Red Hat | openshift4/ose-service-idler-rhel8@sha256:3d5caf2339bffb61f6d0aedb8bc3918aff8adcfdbcc7f25ef25037807d72fd6e_amd64 as a component of Red Hat OpenShift Container Platform 4.7 | openshift4/ose-service-idler-rhel8@sha256:3d5caf2339bffb61f6d0aedb8bc3918aff8adcfdbcc7f25ef25037807d72fd6e_amd64 |
| Red Hat | openshift4/ose-sriov-network-webhook@sha256:2cf8629cb574c07aacee1e8399a29d657926aa1dd3abf8584f0a175d9b2aea0f_amd64 as a component of Red Hat OpenShift Container Platform 4.7 | openshift4/ose-sriov-network-webhook@sha256:2cf8629cb574c07aacee1e8399a29d657926aa1dd3abf8584f0a175d9b2aea0f_amd64 |
| Red Hat | openshift4/ose-jenkins-agent-nodejs-10-rhel8@sha256:9a830ab4181ce1597c31448378c66b37dd721fd0251f3e8f449d5058ab511ead_s390x as a component of Red Hat OpenShift Container Platform 4.7 | openshift4/ose-jenkins-agent-nodejs-10-rhel8@sha256:9a830ab4181ce1597c31448378c66b37dd721fd0251f3e8f449d5058ab511ead_s390x |
| Red Hat | openshift4/ose-egress-dns-proxy@sha256:3bea7fda401ab125ec60044f6ac632a9366b746404065e3cba245590244457c3_s390x as a component of Red Hat OpenShift Container Platform 4.7 | * |
| Red Hat | openshift4/ose-cluster-kube-descheduler-rhel8-operator@sha256:6b15e2f5eb1f1982a9ba8f3fdb47e7c5df0a0b67b32858ff3afcdfce316a2d88_ppc64le as a component of Red Hat OpenShift Container Platform 4.7 | * |
| Red Hat | openshift4/ose-egress-http-proxy@sha256:d644dc8d9a404af0971c655431b86e49032f83d5c196431d9e6d5b4544604e0b_amd64 as a component of Red Hat OpenShift Container Platform 4.7 | openshift4/ose-egress-http-proxy@sha256:d644dc8d9a404af0971c655431b86e49032f83d5c196431d9e6d5b4544604e0b_amd64 |
| Red Hat | openshift4/ose-node-feature-discovery@sha256:2af2dd7c72daa83b834c4645d9d151e347ba66b06c4892259160ee6bd0412ef6_ppc64le as a component of Red Hat OpenShift Container Platform 4.7 | openshift4/ose-node-feature-discovery@sha256:2af2dd7c72daa83b834c4645d9d151e347ba66b06c4892259160ee6bd0412ef6_ppc64le |
| Red Hat | openshift4/ose-kubernetes-nmstate-handler-rhel8@sha256:737fccf78e0583334c4dc853ca58c156d3488a475b450b37b4dacb683cd92211_amd64 as a component of Red Hat OpenShift Container Platform 4.7 | * |
| Red Hat | openshift4/ose-ptp-operator@sha256:4ab5f0cc1aab75266f1987dbd4083371642a5e259a35f8bae562b3aad3904c92_ppc64le as a component of Red Hat OpenShift Container Platform 4.7 | openshift4/ose-ptp-operator@sha256:4ab5f0cc1aab75266f1987dbd4083371642a5e259a35f8bae562b3aad3904c92_ppc64le |
| Red Hat | openshift4/ose-egress-dns-proxy@sha256:3bea7fda401ab125ec60044f6ac632a9366b746404065e3cba245590244457c3_s390x as a component of Red Hat OpenShift Container Platform 4.7 | openshift4/ose-egress-dns-proxy@sha256:3bea7fda401ab125ec60044f6ac632a9366b746404065e3cba245590244457c3_s390x |
| Red Hat | openshift4/ose-sriov-infiniband-cni@sha256:f79e1974a7151bf4e1d8ee153bf1afa9b3ab9e27920bc165819cf669ff194054_amd64 as a component of Red Hat OpenShift Container Platform 4.7 | openshift4/ose-sriov-infiniband-cni@sha256:f79e1974a7151bf4e1d8ee153bf1afa9b3ab9e27920bc165819cf669ff194054_amd64 |
| Red Hat | openshift4/ose-service-idler-rhel8@sha256:912b7e0e89b54a11a59c6828bd5f15f453f92c2677ca7aff548b287acff84a63_ppc64le as a component of Red Hat OpenShift Container Platform 4.7 | openshift4/ose-service-idler-rhel8@sha256:912b7e0e89b54a11a59c6828bd5f15f453f92c2677ca7aff548b287acff84a63_ppc64le |
| Red Hat | openshift4/ose-local-storage-mustgather-rhel8@sha256:9533b712b3322f9df46ff686864d625efd89c2a9a103c5268eba8e34f8dbc775_s390x as a component of Red Hat OpenShift Container Platform 4.7 | openshift4/ose-local-storage-mustgather-rhel8@sha256:9533b712b3322f9df46ff686864d625efd89c2a9a103c5268eba8e34f8dbc775_s390x |
| Red Hat | openshift4/ose-cluster-kube-descheduler-rhel8-operator@sha256:6b15e2f5eb1f1982a9ba8f3fdb47e7c5df0a0b67b32858ff3afcdfce316a2d88_ppc64le as a component of Red Hat OpenShift Container Platform 4.7 | openshift4/ose-cluster-kube-descheduler-rhel8-operator@sha256:6b15e2f5eb1f1982a9ba8f3fdb47e7c5df0a0b67b32858ff3afcdfce316a2d88_ppc64le |
| Red Hat | openshift4/ose-egress-dns-proxy@sha256:f4daa4a5d73aa1b42fe6914938732db92b1bfe403152f6e41c65bafff54ebd0d_amd64 as a component of Red Hat OpenShift Container Platform 4.7 | openshift4/ose-egress-dns-proxy@sha256:f4daa4a5d73aa1b42fe6914938732db92b1bfe403152f6e41c65bafff54ebd0d_amd64 |
| Red Hat | openshift4/ose-sriov-network-config-daemon@sha256:66dc033dbdfdff6fb4332fb827ed88f3b9d931c1cd248fad9181983795df98d9_amd64 as a component of Red Hat OpenShift Container Platform 4.7 | openshift4/ose-sriov-network-config-daemon@sha256:66dc033dbdfdff6fb4332fb827ed88f3b9d931c1cd248fad9181983795df98d9_amd64 |
| Red Hat | openshift4/ose-helm-operator@sha256:10237aac0d4df9e1b398ca47781dbd80160300e4ebb8868599c2554f589fc782_amd64 as a component of Red Hat OpenShift Container Platform 4.7 | openshift4/ose-helm-operator@sha256:10237aac0d4df9e1b398ca47781dbd80160300e4ebb8868599c2554f589fc782_amd64 |
| Red Hat | openshift4/ose-sriov-operator-must-gather@sha256:4232e7a70cc9eb4626e5095661dfb2bc960e1ae44e862b9f4aea6c2225f1c0cc_s390x as a component of Red Hat OpenShift Container Platform 4.7 | openshift4/ose-sriov-operator-must-gather@sha256:4232e7a70cc9eb4626e5095661dfb2bc960e1ae44e862b9f4aea6c2225f1c0cc_s390x |
| Red Hat | openshift4/ose-ptp-operator@sha256:a49af959bc58365c7a6e9e74f2a256424c75fd23f32db58d75c8f4b6230b5512_amd64 as a component of Red Hat OpenShift Container Platform 4.7 | openshift4/ose-ptp-operator@sha256:a49af959bc58365c7a6e9e74f2a256424c75fd23f32db58d75c8f4b6230b5512_amd64 |
…and 220 more
Timeline
- Apr 5, 2021 CVE Published
- Apr 25, 2026 Distribution Patch
- Apr 25, 2026 Distribution Patch
- Apr 25, 2026 Security Advisory
- Apr 25, 2026 Security Advisory
- Apr 25, 2026 Security Advisory
- Apr 30, 2026 CVE Updated
References
- https://access.redhat.com/errata/RHSA-2021:1007 advisory
- https://access.redhat.com/security/updates/classification/#moderate advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=1919391 issue
- https://bugzilla.redhat.com/show_bug.cgi?id=1921650 issue
- https://bugzilla.redhat.com/show_bug.cgi?id=1929042 issue
- https://bugzilla.redhat.com/show_bug.cgi?id=1944017 issue
- https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_1007.json advisory
- https://access.redhat.com/security/cve/CVE-2021-3121 advisory
- https://www.cve.org/CVERecord?id=CVE-2021-3121 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2021-3121 advisory
- https://access.redhat.com/security/cve/CVE-2021-20206 advisory
- https://www.cve.org/CVERecord?id=CVE-2021-20206 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2021-20206 advisory