Critical severity9.8NVD Advisory· Published Feb 3, 2016· Updated Jun 17, 2026
CVE-2016-1906
CVE-2016-1906
Description
Openshift allows remote attackers to gain privileges by updating a build configuration that was created with an allowed type to a type that is not allowed.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
github.com/openshift/originGo | < 1.1.1 | 1.1.1 |
Affected products
117- cpe:2.3:a:kubernetes:kubernetes:-:*:*:*:*:*:*:*
- osv-coords116 versionspkg:apk/chainguard/kubeadm-1.28pkg:apk/chainguard/kubeadm-1.28-defaultpkg:apk/chainguard/kubeadm-1.29pkg:apk/chainguard/kubeadm-1.29-defaultpkg:apk/chainguard/kubeadm-1.30pkg:apk/chainguard/kubeadm-1.30-defaultpkg:apk/chainguard/kubeadm-1.31pkg:apk/chainguard/kubeadm-1.31-defaultpkg:apk/chainguard/kube-apiserver-1.28pkg:apk/chainguard/kube-apiserver-1.28-defaultpkg:apk/chainguard/kube-apiserver-1.29pkg:apk/chainguard/kube-apiserver-1.29-defaultpkg:apk/chainguard/kube-apiserver-1.30pkg:apk/chainguard/kube-apiserver-1.30-defaultpkg:apk/chainguard/kube-apiserver-1.31pkg:apk/chainguard/kube-apiserver-1.31-defaultpkg:apk/chainguard/kube-controller-manager-1.28pkg:apk/chainguard/kube-controller-manager-1.28-defaultpkg:apk/chainguard/kube-controller-manager-1.29pkg:apk/chainguard/kube-controller-manager-1.29-defaultpkg:apk/chainguard/kube-controller-manager-1.30pkg:apk/chainguard/kube-controller-manager-1.30-defaultpkg:apk/chainguard/kube-controller-manager-1.31pkg:apk/chainguard/kube-controller-manager-1.31-defaultpkg:apk/chainguard/kubectl-1.28pkg:apk/chainguard/kubectl-1.28-defaultpkg:apk/chainguard/kubectl-1.29pkg:apk/chainguard/kubectl-1.29-bitnami-compatpkg:apk/chainguard/kubectl-1.29-defaultpkg:apk/chainguard/kubectl-1.30pkg:apk/chainguard/kubectl-1.30-bitnami-compatpkg:apk/chainguard/kubectl-1.30-defaultpkg:apk/chainguard/kubectl-1.31pkg:apk/chainguard/kubectl-1.31-bitnami-compatpkg:apk/chainguard/kubectl-1.31-defaultpkg:apk/chainguard/kubectl-bash-completion-1.28pkg:apk/chainguard/kubectl-bash-completion-1.29pkg:apk/chainguard/kubectl-bash-completion-1.30pkg:apk/chainguard/kubectl-bash-completion-1.31pkg:apk/chainguard/kubelet-1.28pkg:apk/chainguard/kubelet-1.28-defaultpkg:apk/chainguard/kubelet-1.29pkg:apk/chainguard/kubelet-1.29-defaultpkg:apk/chainguard/kubelet-1.30pkg:apk/chainguard/kubelet-1.30-defaultpkg:apk/chainguard/kubelet-1.31pkg:apk/chainguard/kubelet-1.31-defaultpkg:apk/chainguard/kube-proxy-1.28pkg:apk/chainguard/kube-proxy-1.28-defaultpkg:apk/chainguard/kube-proxy-1.29pkg:apk/chainguard/kube-proxy-1.29-defaultpkg:apk/chainguard/kube-proxy-1.29-default-compatpkg:apk/chainguard/kube-proxy-1.30pkg:apk/chainguard/kube-proxy-1.30-defaultpkg:apk/chainguard/kube-proxy-1.30-default-compatpkg:apk/chainguard/kube-proxy-1.31pkg:apk/chainguard/kube-proxy-1.31-defaultpkg:apk/chainguard/kube-proxy-1.31-default-compatpkg:apk/chainguard/kubernetes-1.19pkg:apk/chainguard/kubernetes-1.20pkg:apk/chainguard/kubernetes-1.21pkg:apk/chainguard/kubernetes-1.22pkg:apk/chainguard/kubernetes-1.23pkg:apk/chainguard/kubernetes-1.24pkg:apk/chainguard/kubernetes-1.25pkg:apk/chainguard/kubernetes-1.26pkg:apk/chainguard/kubernetes-1.27pkg:apk/chainguard/kubernetes-1.28pkg:apk/chainguard/kubernetes-1.28-defaultpkg:apk/chainguard/kubernetes-1.29pkg:apk/chainguard/kubernetes-1.29-defaultpkg:apk/chainguard/kubernetes-1.30pkg:apk/chainguard/kubernetes-1.30-defaultpkg:apk/chainguard/kubernetes-1.31pkg:apk/chainguard/kubernetes-1.31-defaultpkg:apk/chainguard/kubernetes-1.32pkg:apk/chainguard/kubernetes-pause-1.29pkg:apk/chainguard/kubernetes-pause-1.30pkg:apk/chainguard/kubernetes-pause-1.31pkg:apk/chainguard/kubernetes-pause-compat-1.29pkg:apk/chainguard/kubernetes-pause-compat-1.30pkg:apk/chainguard/kubernetes-pause-compat-1.31pkg:apk/chainguard/kube-scheduler-1.28pkg:apk/chainguard/kube-scheduler-1.28-defaultpkg:apk/chainguard/kube-scheduler-1.29pkg:apk/chainguard/kube-scheduler-1.29-defaultpkg:apk/chainguard/kube-scheduler-1.30pkg:apk/chainguard/kube-scheduler-1.30-defaultpkg:apk/chainguard/kube-scheduler-1.31pkg:apk/chainguard/kube-scheduler-1.31-defaultpkg:apk/wolfi/kubeadm-1.28pkg:apk/wolfi/kubeadm-1.28-defaultpkg:apk/wolfi/kube-apiserver-1.28pkg:apk/wolfi/kube-apiserver-1.28-defaultpkg:apk/wolfi/kube-controller-manager-1.28pkg:apk/wolfi/kube-controller-manager-1.28-defaultpkg:apk/wolfi/kubectl-1.28pkg:apk/wolfi/kubectl-1.28-defaultpkg:apk/wolfi/kubectl-bash-completion-1.28pkg:apk/wolfi/kubelet-1.28pkg:apk/wolfi/kubelet-1.28-defaultpkg:apk/wolfi/kube-proxy-1.28pkg:apk/wolfi/kube-proxy-1.28-defaultpkg:apk/wolfi/kubernetes-1.24pkg:apk/wolfi/kubernetes-1.25pkg:apk/wolfi/kubernetes-1.26pkg:apk/wolfi/kubernetes-1.27pkg:apk/wolfi/kubernetes-1.28pkg:apk/wolfi/kubernetes-1.28-defaultpkg:apk/wolfi/kubernetes-1.29pkg:apk/wolfi/kubernetes-1.30pkg:apk/wolfi/kubernetes-1.31pkg:apk/wolfi/kubernetes-1.32pkg:apk/wolfi/kube-scheduler-1.28pkg:apk/wolfi/kube-scheduler-1.28-defaultpkg:golang/github.com/openshift/origin
< 0+ 115 more
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 1.1.1
Patches
Vulnerability mechanics
References
10- github.com/advisories/GHSA-m3fm-h5jp-q79pghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2016-1906ghsaADVISORY
- access.redhat.com/errata/RHSA-2016:0070nvdWEB
- access.redhat.com/errata/RHSA-2016:0351nvdWEB
- access.redhat.com/security/cve/CVE-2016-1906ghsaWEB
- bugzilla.redhat.com/show_bug.cgighsaWEB
- github.com/openshift/origin/commit/d95ec085f03ecf10e8c424a4f0340ddb38891406ghsaWEB
- github.com/openshift/origin/issues/6556nvdWEB
- github.com/openshift/origin/pull/6576nvdWEB
- web.nvd.nist.gov/view/vuln/detailghsaWEB
News mentions
0No linked articles in our index yet.