Important: Red Hat OpenShift Pipelines 1.10.6 release and security update
Security Advisory: Important
Red Hat OpenShift Pipelines 1.10.6 has been released.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Red Hat OpenShift Pipelines is a cloud-native continuous integration and delivery (CI/CD) solution for building pipelines using Tekton. Tekton is a flexible, Kubernetes-native, open-source CI/CD framework which enables automating deployments across multiple platforms such as Kubernetes, Serverless, and VMs by abstracting away the underlying details.
Security Fix(es):
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Red Hat OpenShift Pipelines consists of:
For more information, see the Release Notes on any one of the following platforms:
For details on how to apply this update, which includes the changes described in this advisory, refer to: