从这个网页截图中,可以获取到以下关于漏洞的关键信息: 1. 漏洞编号:RHSA-2024:6044 2. 发布日期:2024-09-19 3. 类型/严重性:安全公告,重要 4. 受影响的产品: - Red Hat OpenShift Container Platform 4.14 - Red Hat OpenShift Container Platform 4.14 for RHEL 9 x86_64 - Red Hat OpenShift Container Platform 4.14 for RHEL 8 x86_64 - Red Hat OpenShift Container Platform for Power 4.14 for RHEL 9 ppc64le - Red Hat OpenShift Container Platform for Power 4.14 for RHEL 8 ppc64le - Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.14 for RHEL 9 s390x - Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.14 for RHEL 8 s390x - Red Hat OpenShift Container Platform for ARM 64 4.14 for RHEL 9 aarch64 - Red Hat OpenShift Container Platform for ARM 64 4.14 for RHEL 8 aarch64 5. 安全问题: - openshift/builder: Path traversal allows command injection in privileged - openshift-controller-manager: Elevated Build Pods Can Lead to Node Compromise in OpenShift 6. 解决方案: - 使用oc工具和web控制台检查可用更新。 - 使用OpenShift CLI (oc)或web控制台检查可用更新。 7. 受影响的组件: - openshift/builder - openshift-controller-manager 8. CVE编号: - CVE-2024-7387 - CVE-2024-45496 这些信息可以帮助用户了解漏洞的详细情况、受影响的产品和组件,以及如何解决和修复这些问题。