Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

Red Hat OpenStack 16.2.z RHSA-2023-4694-01 Moderate: Security Update

red hat
Calendar Grey August 22, 2023
Dist Redhat Esm H88
Canonical has unveiled updates for Ubuntu Server 22.04, rectifying multiple vulnerabilities and enhancing system performance.
Red Hat OpenStack Platform (RHOSP) 16.2.z (Train) director Operator containers are now available

Solution

Before applying this update, make sure all previously released errata relevant to your system have been applied.

For details on how to apply this update, refer to:

https://access.redhat.com/articles/11258

Summary

Release of Red Hat OpenStack Platform (RHOSP) 16.2.z (Train) provides these changes:

Topics%20covered

Topics Covered

security advisory Red Hat moderate threat release notes OpenStack operator containers

References

https://access.redhat.com/security/cve/CVE-2020-24736 https://access.redhat.com/security/cve/CVE-2022-21235 https://access.redhat.com/security/cve/CVE-2022-36227 https://access.redhat.com/security/cve/CVE-2023-0361 https://access.redhat.com/security/cve/CVE-2023-1667 https://access.redhat.com/security/cve/CVE-2023-2283 https://access.redhat.com/security/cve/CVE-2023-2602 https://access.redhat.com/security/cve/CVE-2023-2603 https://access.redhat.com/security/cve/CVE-2023-27536 https://access.redhat.com/security/cve/CVE-2023-28321 https://access.redhat.com/security/cve/CVE-2023-28484 https://access.redhat.com/security/cve/CVE-2023-29469 https://access.redhat.com/security/updates/classification#moderate https://docs.redhat.com/en/documentation/red_hat_openstack_platform/16.2/html/release_notes/index

Package List


Advisory ID: RHSA-2023:4694-01
Product: Red Hat OpenStack Platform
Advisory URL: https://access.redhat.com/errata/RHSA-2023:4694
Issue date: 2023-08-22

Topic

Red Hat OpenStack Platform (RHOSP) 16.2.z (Train) director Operatorcontainers are now available.

Topics%20covered

Topics Covered

security advisory Red Hat moderate threat release notes OpenStack operator containers

Relevant Releases Architectures

Bugs Fixed

2215317 - CVE-2022-21235 github.com/Masterminds/vcs: Command Injection via argument injection

2218300 - git url logic does not handle non-default ports and users

2228513 - [16.2] Ephemeral heat communication is not using svc fqdn and hitting proxy

2229173 - [16.2] OpenStackConfigGenerator fails to clone from Azure DevOps with empty git-upload-pack given

5. JIRA issues fixed (https://redhat.atlassian.net/jira/projects):

OSPK8-735 - Improve logging for BMH selection in BaremetalSet controller

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here