VDB
RHSA-2023%3A7720
RHSA-2023%3A7720
PUBLISHED
CVSS 3.299999952316284 LOW
An insecure temporary file vulnerability was found in activesupport rubygem. Contents that will be encrypted are written to a temporary file that has the user’s current umask settings, possibly leading to information disclosure by other users on the same system.
Risk Scores
CVSS 3.1
3.299999952316284
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Red Hat | openshift-logging/elasticsearch-rhel9-operator@sha256:5e9f7ed92dbb92baf9be52c1eaa43664ca5fc08ac1fb0c9e1de3d832bc17b457_arm64 as a component of RHOL 5.8 for RHEL 9 | openshift-logging/elasticsearch-rhel9-operator@sha256:5e9f7ed92dbb92baf9be52c1eaa43664ca5fc08ac1fb0c9e1de3d832bc17b457_arm64 |
| Red Hat | openshift-logging/vector-rhel9@sha256:0ecb3f02020679580bef98d8bcfa7495338a3d7132fb45f63af330a60f78a38f_ppc64le as a component of RHOL 5.8 for RHEL 9 | openshift-logging/vector-rhel9@sha256:0ecb3f02020679580bef98d8bcfa7495338a3d7132fb45f63af330a60f78a38f_ppc64le |
| Red Hat | openshift-logging/logging-view-plugin-rhel9@sha256:2cc1fdae4617d808fe9a1fcaebc557ddd2fb0a2c5cd5fd96fd4810f363770a65_arm64 as a component of RHOL 5.8 for RHEL 9 | * |
| Red Hat | openshift-logging/opa-openshift-rhel9@sha256:ff9d8eb7f57fab1583d12b7cfe7e3a730e350f1fe2f906ed42f6d791c0ba39b3_s390x as a component of RHOL 5.8 for RHEL 9 | openshift-logging/opa-openshift-rhel9@sha256:ff9d8eb7f57fab1583d12b7cfe7e3a730e350f1fe2f906ed42f6d791c0ba39b3_s390x |
| Red Hat | openshift-logging/vector-rhel9@sha256:6b4a8f1ddc3ab2cba11bd52488a4696376f99ebd7aa9087e56f80a0b0c99d228_s390x as a component of RHOL 5.8 for RHEL 9 | openshift-logging/vector-rhel9@sha256:6b4a8f1ddc3ab2cba11bd52488a4696376f99ebd7aa9087e56f80a0b0c99d228_s390x |
| Red Hat | openshift-logging/cluster-logging-operator-bundle@sha256:390c610a7c03bc8dadc59caa093f2805658b61cb12e555357ed8adbe89e6fb1f_amd64 as a component of RHOL 5.8 for RHEL 9 | * |
| Red Hat | openshift-logging/lokistack-gateway-rhel9@sha256:86659855e0de6ca71a7f6f4297ad5ab4fad1298fe1a5e957fc78b86820b9176f_amd64 as a component of RHOL 5.8 for RHEL 9 | openshift-logging/lokistack-gateway-rhel9@sha256:86659855e0de6ca71a7f6f4297ad5ab4fad1298fe1a5e957fc78b86820b9176f_amd64 |
| Red Hat | openshift-logging/opa-openshift-rhel9@sha256:3563962ecba36c84353c1f5b416e46d7c5e562548e06866d7c38c7daad5ca459_arm64 as a component of RHOL 5.8 for RHEL 9 | openshift-logging/opa-openshift-rhel9@sha256:3563962ecba36c84353c1f5b416e46d7c5e562548e06866d7c38c7daad5ca459_arm64 |
| Red Hat | openshift-logging/logging-view-plugin-rhel9@sha256:410b2e4182e3ea678de1f512c517e62f8d03922bb8ac08c246cbbc01697e2606_amd64 as a component of RHOL 5.8 for RHEL 9 | openshift-logging/logging-view-plugin-rhel9@sha256:410b2e4182e3ea678de1f512c517e62f8d03922bb8ac08c246cbbc01697e2606_amd64 |
| Red Hat | openshift-logging/cluster-logging-rhel9-operator@sha256:7c24df1cacad4f8552d1026d04f640ed2dc0362d7ab7b3eac5f6595ae2123e15_ppc64le as a component of RHOL 5.8 for RHEL 9 | openshift-logging/cluster-logging-rhel9-operator@sha256:7c24df1cacad4f8552d1026d04f640ed2dc0362d7ab7b3eac5f6595ae2123e15_ppc64le |
| Red Hat | openshift-logging/loki-operator-bundle@sha256:9665139e085110a74836a91cd905eb3ff0737a100af32f4aff3123db6417b3f6_amd64 as a component of RHOL 5.8 for RHEL 9 | openshift-logging/loki-operator-bundle@sha256:9665139e085110a74836a91cd905eb3ff0737a100af32f4aff3123db6417b3f6_amd64 |
| Red Hat | openshift-logging/fluentd-rhel9@sha256:acbb6a11b716567129eb39902cccd1b38934545bd46000dd3a54f7cbfd92674c_ppc64le as a component of RHOL 5.8 for RHEL 9 | openshift-logging/fluentd-rhel9@sha256:acbb6a11b716567129eb39902cccd1b38934545bd46000dd3a54f7cbfd92674c_ppc64le |
| Red Hat | openshift-logging/loki-rhel9-operator@sha256:d60a491579d301e4bd92e9f885a89498abee8bcacb8e473314934b11cf0e4bda_ppc64le as a component of RHOL 5.8 for RHEL 9 | openshift-logging/loki-rhel9-operator@sha256:d60a491579d301e4bd92e9f885a89498abee8bcacb8e473314934b11cf0e4bda_ppc64le |
| Red Hat | openshift-logging/elasticsearch6-rhel9@sha256:6cce35b0749f0e115aaeb30a7996590badbd2d086998ac33e839cda2516e396f_arm64 as a component of RHOL 5.8 for RHEL 9 | openshift-logging/elasticsearch6-rhel9@sha256:6cce35b0749f0e115aaeb30a7996590badbd2d086998ac33e839cda2516e396f_arm64 |
| Red Hat | openshift-logging/opa-openshift-rhel9@sha256:e1a7480799f45463e35566ae9f09be956460b6b01c0adc32e90ee57f18fea534_amd64 as a component of RHOL 5.8 for RHEL 9 | * |
| Red Hat | openshift-logging/lokistack-gateway-rhel9@sha256:f9acd1ae73903e1c60b0b2eb4c89093cc34d4894e41d97e86a6d30b01b9034f9_arm64 as a component of RHOL 5.8 for RHEL 9 | openshift-logging/lokistack-gateway-rhel9@sha256:f9acd1ae73903e1c60b0b2eb4c89093cc34d4894e41d97e86a6d30b01b9034f9_arm64 |
| Red Hat | openshift-logging/elasticsearch-proxy-rhel9@sha256:5e0d0a36ba870e93d53e3083a235c80c5c545d53f9903ae545a13ee6dbd6bedd_s390x as a component of RHOL 5.8 for RHEL 9 | openshift-logging/elasticsearch-proxy-rhel9@sha256:5e0d0a36ba870e93d53e3083a235c80c5c545d53f9903ae545a13ee6dbd6bedd_s390x |
| Red Hat | openshift-logging/elasticsearch-proxy-rhel9@sha256:a38e13a13472ef326d4f1cb0805f2141efd430101de4b0e2470b1528a76b75e2_arm64 as a component of RHOL 5.8 for RHEL 9 | openshift-logging/elasticsearch-proxy-rhel9@sha256:a38e13a13472ef326d4f1cb0805f2141efd430101de4b0e2470b1528a76b75e2_arm64 |
| Red Hat | openshift-logging/elasticsearch-operator-bundle@sha256:466b618a211e67669e142674d96c39fca8e65d1ad40b2cf74ba049af7d9f4c1b_amd64 as a component of RHOL 5.8 for RHEL 9 | openshift-logging/elasticsearch-operator-bundle@sha256:466b618a211e67669e142674d96c39fca8e65d1ad40b2cf74ba049af7d9f4c1b_amd64 |
| Red Hat | openshift-logging/cluster-logging-rhel9-operator@sha256:789fc86c921cafa374efc033e190d6bc29e2c5d594e5a6118dda512623246212_amd64 as a component of RHOL 5.8 for RHEL 9 | openshift-logging/cluster-logging-rhel9-operator@sha256:789fc86c921cafa374efc033e190d6bc29e2c5d594e5a6118dda512623246212_amd64 |
…and 39 more
Timeline
- Dec 13, 2023 CVE Published
- Apr 1, 2026 CVE Updated
- May 2, 2026 Distribution Patch
- May 2, 2026 Distribution Patch
- May 2, 2026 Security Advisory
- May 2, 2026 Security Advisory
References
- https://access.redhat.com/errata/RHSA-2023:7720 advisory
- https://access.redhat.com/security/updates/classification/#low advisory
- https://bugzilla.redhat.com/show_bug.cgi?id=2236261 issue
- https://issues.redhat.com/browse/LOG-4452 advisory
- https://issues.redhat.com/browse/LOG-4480 advisory
- https://issues.redhat.com/browse/LOG-4612 advisory
- https://issues.redhat.com/browse/LOG-4655 advisory
- https://issues.redhat.com/browse/LOG-4683 advisory
- https://issues.redhat.com/browse/LOG-4706 advisory
- https://issues.redhat.com/browse/LOG-4741 advisory
- https://issues.redhat.com/browse/LOG-4768 advisory
- https://issues.redhat.com/browse/LOG-4780 advisory
- https://issues.redhat.com/browse/LOG-4791 advisory
- https://issues.redhat.com/browse/LOG-4811 advisory
- https://issues.redhat.com/browse/LOG-4815 advisory
- https://issues.redhat.com/browse/LOG-4821 advisory
- https://issues.redhat.com/browse/LOG-4828 advisory
- https://issues.redhat.com/browse/LOG-4836 advisory
- https://issues.redhat.com/browse/LOG-4841 advisory
- https://issues.redhat.com/browse/LOG-4852 advisory
…and 5 more