Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

Red Hat OpenShift 1.4.1 Moderate: Security Update for Sandboxed Containers

red hat
Calendar Grey July 27, 2023
Dist Redhat Esm H88
Red Hat released a security update for OpenShift sandboxed containers version 1.4.1, now marked as Moderate severity. Apply the latest patches and confirm all vulnerabilities are resolved
OpenShift sandboxed containers 1.4.1 is now available

Solution

Before applying this update, make sure all previously released errata relevant to your system have been applied.

For details on how to apply this update, refer to:

https://access.redhat.com/articles/11258

Summary

OpenShift sandboxed containers support for OpenShift Container Platform provides users with built-in support for running Kata containers as an additional, optional runtime.
This advisory contains a security update for OpenShift sandboxed containers, as well as bug fixes.
Security fix:
* A compliance problem was found in the Red Hat OpenShift Container Platform. Red Hat discovered that when FIPS mode was enabled, not all of the cryptographic modules in use were FIPS-validated. (CVE-2023-3089)
For more information about the additional fixes in this release, see the Release Notes documentation:
https://access.redhat.com/documentation/en-us/openshift_sandboxed_containers/1.4/html-single/openshift_sandboxed_containers_release_notes/

Topics%20covered

Topics Covered

security advisory moderate security update red hat threat fix openshift sandboxed containers

References

https://access.redhat.com/security/cve/CVE-2020-24736 https://access.redhat.com/security/cve/CVE-2021-46848 https://access.redhat.com/security/cve/CVE-2022-1271 https://access.redhat.com/security/cve/CVE-2022-1304 https://access.redhat.com/security/cve/CVE-2022-2509 https://access.redhat.com/security/cve/CVE-2022-3715 https://access.redhat.com/security/cve/CVE-2022-28805 https://access.redhat.com/security/cve/CVE-2022-34903 https://access.redhat.com/security/cve/CVE-2022-35737 https://access.redhat.com/security/cve/CVE-2022-36227 https://access.redhat.com/security/cve/CVE-2022-40303 https://access.redhat.com/security/cve/CVE-2022-40304 https://access.redhat.com/security/cve/CVE-2022-47629 https://access.redhat.com/security/cve/CVE-2023-0464 https://access.redhat.com/security/cve/CVE-2023-0465 https://access.redhat.com/security/cve/CVE-2023-0466 https://access.redhat.com/security/cve/CVE-2023-1255 https://access.redhat.com/security/cve/CVE-2023-1667 https://access.redhat.com/security/cve/CVE-2023-2283 https://access.redhat.com/security/cve/CVE-2023-2650 https://access.redhat.com/security/cve/CVE-2023-3089 https://access.redhat.com/security/cve/CVE-2023-24329 https://access.redhat.com/security/cve/CVE-2023-26604 Read the Full Advisory

Package List


Advisory ID: RHSA-2023:4290-01
Product: Red Hat OpenShift Enterprise
Advisory URL: https://access.redhat.com/errata/RHSA-2023:4290
Issue date: 2023-07-27

Topic

OpenShift sandboxed containers 1.4.1 is now available.Red Hat Product Security has rated this update as having a security impactof Moderate. A Common Vulnerability Scoring System (CVSS) base score, whichgives a detailed severity rating, is available for each vulnerability fromthe CVE link(s) in the References section.

Topics%20covered

Topics Covered

security advisory moderate security update red hat threat fix openshift sandboxed containers

Relevant Releases Architectures

Bugs Fixed

2212085 - CVE-2023-3089 openshift: OCP & FIPS mode

5. JIRA issues fixed (https://redhat.atlassian.net/jira/projects):

KATA-2121 - taints/tolerations from kata-monitor daemonset removed by reconciliation

KATA-2212 - operator, must-gather, and cloud-api-adapter dockerfiles use ubi8 base images

KATA-2299 - 1.4.1 build showing 1.4.0 version

OCPBUGS-15175 - [Major Incident] CVE-2023-3089 osc-operator-container: openshift: OCP & FIPS mode [rhosc-1-4]

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here