Red Hat Security Advisory: OpenShift Container Platform 4.13.49 packages and security update
Red Hat OpenShift Container Platform 4. 13. 49 includes a security update addressing CVE-2024-34064, a moderate severity vulnerability in the jinja2 package where keys containing non-attribute characters are accepted. This advisory applies to on-premise or private cloud deployments of OpenShift Container Platform 4. 13. Users are advised to upgrade to the updated packages and container images when available. The update fixes the vulnerability by updating the affected RPM packages. No known exploits are reported in the wild at this time.
AI Analysis
Technical Summary
This advisory covers a moderate security vulnerability (CVE-2024-34064) in the jinja2 package used by Red Hat OpenShift Container Platform 4.13. The vulnerability involves jinja2 accepting keys containing non-attribute characters, which could lead to security issues. Red Hat has released updated RPM packages and container images as part of OpenShift Container Platform 4.13.49 to address this issue. The advisory recommends upgrading to these updated packages and images using the OpenShift CLI or web console. The vulnerability is tracked under CWE-79 and has no CVSS score assigned yet.
Potential Impact
The vulnerability is rated as moderate severity by Red Hat Product Security. It affects the jinja2 package within OpenShift Container Platform 4.13. Exploitation could potentially allow improper handling of keys with non-attribute characters, which may lead to security risks. There are no known exploits in the wild currently. The impact is limited to affected versions of OpenShift Container Platform 4.13 on various supported architectures.
Mitigation Recommendations
Red Hat has released updated RPM packages and container images for OpenShift Container Platform 4.13.49 that fix this vulnerability. Users should upgrade their OpenShift clusters to these updated packages and images as soon as they are available in the appropriate release channels. Upgrades can be performed using the OpenShift CLI (oc) or the web console. Detailed upgrade instructions are available in the official Red Hat OpenShift documentation. Patch status is confirmed as fixed in this update.
Red Hat Security Advisory: OpenShift Container Platform 4.13.49 packages and security update
Description
Red Hat OpenShift Container Platform 4. 13. 49 includes a security update addressing CVE-2024-34064, a moderate severity vulnerability in the jinja2 package where keys containing non-attribute characters are accepted. This advisory applies to on-premise or private cloud deployments of OpenShift Container Platform 4. 13. Users are advised to upgrade to the updated packages and container images when available. The update fixes the vulnerability by updating the affected RPM packages. No known exploits are reported in the wild at this time.
Weaknesses
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This advisory covers a moderate security vulnerability (CVE-2024-34064) in the jinja2 package used by Red Hat OpenShift Container Platform 4.13. The vulnerability involves jinja2 accepting keys containing non-attribute characters, which could lead to security issues. Red Hat has released updated RPM packages and container images as part of OpenShift Container Platform 4.13.49 to address this issue. The advisory recommends upgrading to these updated packages and images using the OpenShift CLI or web console. The vulnerability is tracked under CWE-79 and has no CVSS score assigned yet.
Potential Impact
The vulnerability is rated as moderate severity by Red Hat Product Security. It affects the jinja2 package within OpenShift Container Platform 4.13. Exploitation could potentially allow improper handling of keys with non-attribute characters, which may lead to security risks. There are no known exploits in the wild currently. The impact is limited to affected versions of OpenShift Container Platform 4.13 on various supported architectures.
Mitigation Recommendations
Red Hat has released updated RPM packages and container images for OpenShift Container Platform 4.13.49 that fix this vulnerability. Users should upgrade their OpenShift clusters to these updated packages and images as soon as they are available in the appropriate release channels. Upgrades can be performed using the OpenShift CLI (oc) or the web console. Detailed upgrade instructions are available in the official Red Hat OpenShift documentation. Patch status is confirmed as fixed in this update.
Technical Details
- Gcve Source
- db.gcve.eu
- Csaf Category
- csaf_security_advisory
- Csaf Version
- 2.0
- Publisher
- Red Hat Product Security
- Advisory Id
- RHSA-2024:6011
- Cve Count
- 1
- Additional Cves
- []
- Cvss Version
- null
Threat ID: 6a1f4ea0e29bf47b5008784a
Added to database: 6/2/2026, 9:44:00 PM
Last enriched: 6/2/2026, 10:25:51 PM
Last updated: 6/3/2026, 5:07:39 AM
Views: 2
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.