Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 67 articles for you...
172
security advisorysecurity fixsystem updateUbuntu 24.04: USN-7522-1 critical: linux-azure-nvidia security fix
Several security issues were fixed in the Linux kernel.. ========================================================================== Ubuntu Security Notice USN-7522-1 May 20, 2025 linux-azure-nvidia vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 24.04 LTS Summary: Several security issues were fixed in the Linux kernel. Software Description: - linux-azure-nvidia: Linux kernel for Microsoft Azure Cloud systems, N-Series Details: Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - RISC-V architecture; - x86 architecture; - Block layer subsystem; - Compute Acceleration Framework; - ACPI drivers; - Drivers core; - Ublk userspace block driver; - Virtio block driver; - Bluetooth drivers; - DMA engine subsystem; - GPU drivers; - Microsoft Hyper-V drivers; - Hardware monitoring drivers; - IIO ADC drivers; - IIO subsystem; - InfiniBand drivers; - Multiple devices driver; - Media drivers; - Microchip PCI driver; - Network drivers; - Mellanox network drivers; - Microsoft Azure Network Adapter (MANA) driver; - STMicroelectronics network drivers; - PCI subsystem; - Pin controllers subsystem; - x86 platform drivers; - Power supply drivers; - SCSI subsystem; - USB Gadget drivers; - TDX Guest driver; - AFS file system; - BTRFS file system; - Ceph distributed file system; - EROFS file system; - File systems infrastructure; - Network file systems library; - NILFS2 file system; - Overlay file system; - SMB network file system; - VLANs driver; - Memory management; - LAPB network protocol; - io_uring subsystem; - BPF subsystem; - Control group (cgroup); - Tracing infrastructure; - Workqueue subsystem; - Bluetooth subsystem; - Networking core; - IPv4 networking; - IPv6networking; - MAC80211 subsystem; - Multipath TCP; - Netfilter; - NET/ROM layer; - Packet sockets; - RDS protocol; - Network traffic control; - SCTP protocol; - SMC sockets; - Wireless networking; - SELinux security module; - ALSA framework; - SOF drivers; (CVE-2024-56653, CVE-2024-57932, CVE-2024-54455, CVE-2024-57938, CVE-2024-57896, CVE-2024-53179, CVE-2024-57903, CVE-2025-21640, CVE-2024-56654, CVE-2024-57906, CVE-2024-53690, CVE-2025-21648, CVE-2024-57913, CVE-2025-21655, CVE-2024-57907, CVE-2025-21634, CVE-2024-57926, CVE-2025-21659, CVE-2024-54460, CVE-2024-57898, CVE-2024-56769, CVE-2024-36476, CVE-2025-21938, CVE-2025-21637, CVE-2024-57888, CVE-2024-57901, CVE-2024-57887, CVE-2024-57940, CVE-2024-49571, CVE-2024-57889, CVE-2024-55639, CVE-2024-57899, CVE-2024-56759, CVE-2024-41013, CVE-2024-57895, CVE-2024-57933, CVE-2024-56662, CVE-2024-56767, CVE-2025-21639, CVE-2024-56715, CVE-2024-57883, CVE-2025-21636, CVE-2024-57931, CVE-2025-21642, CVE-2024-53685, CVE-2024-56659, CVE-2025-21971, CVE-2024-56716, CVE-2025-21652, CVE-2024-57792, CVE-2025-21638, CVE-2024-56764, CVE-2024-55916, CVE-2024-57916, CVE-2024-56718, CVE-2024-57929, CVE-2024-57900, CVE-2025-21660, CVE-2024-57879, CVE-2024-56758, CVE-2024-57908, CVE-2025-21664, CVE-2024-56652, CVE-2024-57882, CVE-2024-39282, CVE-2025-21663, CVE-2024-47736, CVE-2024-54193, CVE-2025-21650, CVE-2024-56665, CVE-2024-57793, CVE-2024-58087, CVE-2025-21658, CVE-2025-21643, CVE-2024-54683, CVE-2024-56667, CVE-2024-56664, CVE-2024-56770, CVE-2024-57946, CVE-2024-57904, CVE-2024-56709, CVE-2024-56369, CVE-2024-58237, CVE-2024-57885, CVE-2024-56763, CVE-2024-56657, CVE-2025-21645, CVE-2024-57893, CVE-2025-21631, CVE-2024-57791, CVE-2024-57910, CVE-2024-57902, CVE-2024-57806, CVE-2025-21656, CVE-2024-53125, CVE-2024-56761, CVE-2024-56717, CVE-2024-47408, CVE-2025-21654, CVE-2025-21649, CVE-2024-57807, CVE-2024-56675, CVE-2025-21653, CVE-2024-57897, CVE-2024-53687, CVE-2024-56760, CVE-2025-21635, CVE-2025-21632, CVE-2024-57890, CVE-2025-21647,CVE-2024-57917, CVE-2024-56372, CVE-2024-56656, CVE-2024-57912, CVE-2024-57841, CVE-2025-21953, CVE-2024-56710, CVE-2024-57884, CVE-2024-57804, CVE-2025-21888, CVE-2024-56660, CVE-2024-57805, CVE-2024-57801, CVE-2024-38608, CVE-2024-57945, CVE-2024-55881, CVE-2024-57802, CVE-2024-57892, CVE-2025-21646, CVE-2024-56670, CVE-2025-21651, CVE-2024-57939, CVE-2024-57925, CVE-2024-57911, CVE-2025-21662, CVE-2024-49568) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 24.04 LTS linux-image-6.8.0-1016-azure-nvidia 6.8.0-1016.17 linux-image-azure-nvidia 6.8.0-1016.17 After a standard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. Unless you manually uninstalled the standard kernel metapackages (e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual, linux-powerpc), a standard system upgrade will automatically perform this as well. References: https://ubuntu.com/security/notices/USN-7522-1 CVE-2024-36476, CVE-2024-38608, CVE-2024-39282, CVE-2024-41013, CVE-2024-47408, CVE-2024-47736, CVE-2024-49568, CVE-2024-49571, CVE-2024-53125, CVE-2024-53179, CVE-2024-53685, CVE-2024-53687, CVE-2024-53690, CVE-2024-54193, CVE-2024-54455, CVE-2024-54460, CVE-2024-54683, CVE-2024-55639, CVE-2024-55881, CVE-2024-55916, CVE-2024-56369, CVE-2024-56372, CVE-2024-56652, CVE-2024-56653, CVE-2024-56654, CVE-2024-56656, CVE-2024-56657, CVE-2024-56659, CVE-2024-56660, CVE-2024-56662, CVE-2024-56664, CVE-2024-56665, CVE-2024-56667, CVE-2024-56670, CVE-2024-56675, CVE-2024-56709, CVE-2024-56710, CVE-2024-56715, CVE-2024-56716, CVE-2024-56717, CVE-2024-56718, CVE-2024-56758, CVE-2024-56759, CVE-2024-56760, CVE-2024-56761, CVE-2024-56763, CVE-2024-56764, CVE-2024-56767, CVE-2024-56769,CVE-2024-56770, CVE-2024-57791, CVE-2024-57792, CVE-2024-57793, CVE-2024-57801, CVE-2024-57802, CVE-2024-57804, CVE-2024-57805, CVE-2024-57806, CVE-2024-57807, CVE-2024-57841, CVE-2024-57879, CVE-2024-57882, CVE-2024-57883, CVE-2024-57884, CVE-2024-57885, CVE-2024-57887, CVE-2024-57888, CVE-2024-57889, CVE-2024-57890, CVE-2024-57892, CVE-2024-57893, CVE-2024-57895, CVE-2024-57896, CVE-2024-57897, CVE-2024-57898, CVE-2024-57899, CVE-2024-57900, CVE-2024-57901, CVE-2024-57902, CVE-2024-57903, CVE-2024-57904, CVE-2024-57906, CVE-2024-57907, CVE-2024-57908, CVE-2024-57910, CVE-2024-57911, CVE-2024-57912, CVE-2024-57913, CVE-2024-57916, CVE-2024-57917, CVE-2024-57925, CVE-2024-57926, CVE-2024-57929, CVE-2024-57931, CVE-2024-57932, CVE-2024-57933, CVE-2024-57938, CVE-2024-57939, CVE-2024-57940, CVE-2024-57945, CVE-2024-57946, CVE-2024-58087, CVE-2024-58237, CVE-2025-21631, CVE-2025-21632, CVE-2025-21634, CVE-2025-21635, CVE-2025-21636, CVE-2025-21637, CVE-2025-21638, CVE-2025-21639, CVE-2025-21640, CVE-2025-21642, CVE-2025-21643, CVE-2025-21645, CVE-2025-21646, CVE-2025-21647, CVE-2025-21648, CVE-2025-21649, CVE-2025-21650, CVE-2025-21651, CVE-2025-21652, CVE-2025-21653, CVE-2025-21654, CVE-2025-21655, CVE-2025-21656, CVE-2025-21658, CVE-2025-21659, CVE-2025-21660, CVE-2025-21662, CVE-2025-21663, CVE-2025-21664, CVE-2025-21888, CVE-2025-21938, CVE-2025-21953, CVE-2025-21971 Package Information: https://launchpad.net/ubuntu/+source/linux-azure-nvidia/6.8.0-1016.17 . Multiple vulnerabilities identified in the linux-azure-nvidia kernel of Ubuntu; immediate update necessary to ensure system security.. linux kernel updates, cloud security, ubuntu advisories, linux patches, kernel vulnerabilities. . Severity: Critical. LinuxSecurity.com Team
May 20, 2025
•Critical
Ubuntu
100
security advisorymoderateSUSESUSE: 2024:2859-1 Moderate: Kubernetes 1.24 CVE-2021-25743 Advisory
* bsc#1194400 Cross-References: * CVE-2021-25743 . # Security update for kubernetes1.24 Announcement ID: SUSE-SU-2024:2859-1 Rating: moderate References: * bsc#1194400 Cross-References: * CVE-2021-25743 CVSS scores: * CVE-2021-25743 ( SUSE ): 4.0 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N * CVE-2021-25743 ( NVD ): 3.0 CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:N Affected Products: * Containers Module 15-SP5 * openSUSE Leap 15.5 * openSUSE Leap 15.6 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 An update that solves one vulnerability can now be installed. ## Description: This update for kubernetes1.24 fixes the following issues: * CVE-2021-25743: Fixed sanitization of raw data of escape, meta or control sequences before output it to terminal (bsc#1194400) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-2859=1 SUSE-2024-2859=1 * openSUSE Leap 15.6 zypper in -t patch openSUSE-SLE-15.6-2024-2859=1 * Containers Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Containers-15-SP5-2024-2859=1 ## Package List: * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * kubernetes1.24-client-common-1.24.17-150500.3.19.1 * kubernetes1.24-proxy-1.24.17-150500.3.19.1 * kubernetes1.24-kubelet-1.24.17-150500.3.19.1 * kubernetes1.24-scheduler-1.24.17-150500.3.19.1 * kubernetes1.24-controller-manager-1.24.17-150500.3.19.1 * kubernetes1.24-client-1.24.17-150500.3.19.1 * kubernetes1.24-kubeadm-1.24.17-150500.3.19.1 * kubernetes1.24-kubelet-common-1.24.17-150500.3.19.1 * kubernetes1.24-apiserver-1.24.17-150500.3.19.1 * openSUSE Leap 15.5(noarch) * kubernetes1.24-client-bash-completion-1.24.17-150500.3.19.1 * kubernetes1.24-client-fish-completion-1.24.17-150500.3.19.1 * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * kubernetes1.24-client-common-1.24.17-150500.3.19.1 * kubernetes1.24-proxy-1.24.17-150500.3.19.1 * kubernetes1.24-kubelet-1.24.17-150500.3.19.1 * kubernetes1.24-scheduler-1.24.17-150500.3.19.1 * kubernetes1.24-controller-manager-1.24.17-150500.3.19.1 * kubernetes1.24-client-1.24.17-150500.3.19.1 * kubernetes1.24-kubeadm-1.24.17-150500.3.19.1 * kubernetes1.24-kubelet-common-1.24.17-150500.3.19.1 * kubernetes1.24-apiserver-1.24.17-150500.3.19.1 * openSUSE Leap 15.6 (noarch) * kubernetes1.24-client-bash-completion-1.24.17-150500.3.19.1 * kubernetes1.24-client-fish-completion-1.24.17-150500.3.19.1 * Containers Module 15-SP5 (aarch64 ppc64le s390x x86_64) * kubernetes1.24-client-common-1.24.17-150500.3.19.1 * kubernetes1.24-client-1.24.17-150500.3.19.1 ## References: * https://www.suse.com/security/cve/CVE-2021-25743.html * https://bugzilla.suse.com/show_bug.cgi?id=1194400 . Kubernetes version 1.24 has released a security patch for CVE-2021-25743, which has been assigned a moderate severity level. Instructions for applying the update are provided.. SUSE Security Update, Kubernetes 1.24, CVE-2021-25743, Linux Patch. . LinuxSecurity.com Team
Aug 08, 2024
SuSE
172
security advisorycriticalUbuntuUbuntu 16.04 LTS USN-6778-1 Critical: Kernel Use-After-Free DDoS Risk
Several security issues were fixed in the Linux kernel.. ========================================================================== Ubuntu Security Notice USN-6778-1 May 16, 2024 linux, linux-aws, linux-kvm, linux-lts-xenial vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 16.04 LTS - Ubuntu 14.04 LTS Summary: Several security issues were fixed in the Linux kernel. Software Description: - linux: Linux kernel - linux-aws: Linux kernel for Amazon Web Services (AWS) systems - linux-kvm: Linux kernel for cloud environments - linux-lts-xenial: Linux hardware enablement kernel from Xenial for Trusty Details: Zheng Wang discovered that the Broadcom FullMAC WLAN driver in the Linux kernel contained a race condition during device removal, leading to a use- after-free vulnerability. A physically proximate attacker could possibly use this to cause a denial of service (system crash). (CVE-2023-47233) Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Ext4 file system; - JFS file system; - NILFS2 file system; - Core kernel; - Bluetooth subsystem; - Networking core; - IPv4 networking; - Logical Link layer; - MAC80211 subsystem; - Netlink; - NFC subsystem; - Tomoyo security module; (CVE-2023-52601, CVE-2024-26622, CVE-2024-26805, CVE-2024-26635, CVE-2023-52602, CVE-2024-26801, CVE-2023-52566, CVE-2024-26704, CVE-2021-46939, CVE-2024-26614, CVE-2023-52604, CVE-2023-52530, CVE-2023-52524) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 16.04 LTS linux-image-4.4.0-1132-kvm 4.4.0-1132.142 Available with Ubuntu Pro linux-image-4.4.0-1169-aws 4.4.0-1169.184 Available with Ubuntu Pro linux-image-4.4.0-254-generic 4.4.0-254.288 Available with Ubuntu Pro linux-image-4.4.0-254-lowlatency 4.4.0-254.288 Available with Ubuntu Pro linux-image-aws 4.4.0.1169.173 Available with Ubuntu Pro linux-image-generic 4.4.0.254.260 Available with Ubuntu Pro linux-image-generic-lts-xenial 4.4.0.254.260 Available with Ubuntu Pro linux-image-kvm 4.4.0.1132.129 Available with Ubuntu Pro linux-image-lowlatency 4.4.0.254.260 Available with Ubuntu Pro linux-image-lowlatency-lts-xenial 4.4.0.254.260 Available with Ubuntu Pro linux-image-virtual 4.4.0.254.260 Available with Ubuntu Pro linux-image-virtual-lts-xenial 4.4.0.254.260 Available with Ubuntu Pro Ubuntu 14.04 LTS linux-image-4.4.0-1131-aws 4.4.0-1131.137 Available with Ubuntu Pro linux-image-4.4.0-254-generic 4.4.0-254.288~14.04.1 Available with Ubuntu Pro linux-image-4.4.0-254-lowlatency 4.4.0-254.288~14.04.1 Available with Ubuntu Pro linux-image-aws 4.4.0.1131.128 Available with Ubuntu Pro linux-image-generic-lts-xenial 4.4.0.254.288~14.04.1 Available with Ubuntu Pro linux-image-lowlatency-lts-xenial 4.4.0.254.288~14.04.1 Available with Ubuntu Pro linux-image-virtual-lts-xenial 4.4.0.254.288~14.04.1 Available with Ubuntu Pro After astandard system update you need to reboot your computer to make all the necessary changes. ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. Unless you manually uninstalled the standard kernel metapackages (e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual, linux-powerpc), a standard system upgrade will automatically perform this as well. References: https://ubuntu.com/security/notices/USN-6778-1 CVE-2021-46939, CVE-2023-47233, CVE-2023-52524, CVE-2023-52530, CVE-2023-52566, CVE-2023-52601, CVE-2023-52602, CVE-2023-52604, CVE-2024-26614, CVE-2024-26622, CVE-2024-26635, CVE-2024-26704, CVE-2024-26801, CVE-2024-26805 . Explore the recent security updates implemented in the Linux kernel for Ubuntu, which target significant vulnerabilities and emphasize necessary patches to ensure system integrity.. Linux Kernel Security, Ubuntu Updates, Denial of Service Fixes. . Severity: Critical. LinuxSecurity.com Team
May 16, 2024
•Critical
Ubuntu
98
security advisoryprivilege escalationcloud computingRed Hat OpenShift 4.10 Advisory: RHSA-2023-4898 Important PrivEsc Fix
Red Hat OpenShift Container Platform release 4.10.67 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.10.. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ===================================================================== Red Hat Security Advisory Synopsis: Important: OpenShift Container Platform 4.10.67 security update Advisory ID: RHSA-2023:4898-01 Product: Red Hat OpenShift Enterprise Advisory URL: https://access.redhat.com/errata/RHSA-2023:4898 Issue date: 2023-09-06 CVE Names: CVE-2023-1260 ===================================================================== 1. Summary: Red Hat OpenShift Container Platform release 4.10.67 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat OpenShift Container Platform 4.10 - aarch64, noarch, ppc64le, s390x, x86_64 3. Description: Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.10.67. See the following advisory for the container images for this release: https://access.redhat.com/errata/RHBA-2023:4896 Security Fix(es): * kube-apiserver: PrivEsc (CVE-2023-1260) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in theReferences section. All OpenShift Container Platform 4.10 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.10/html/updating_clusters/updating-cluster-cli 4. Solution: For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update: https://docs.redhat.com/en/documentation/openshift_container_platform/4.10/html/release_notes/ocp-4-10-release-notes 5. Bugs fixed (https://bugzilla.redhat.com/): 2176267 - CVE-2023-1260 kube-apiserver: PrivEsc 6. Package List: Red Hat OpenShift Container Platform 4.10: Source: openshift-4.10.0-202308291228.p0.g26fdcdf.assembly.stream.el7.src.rpm x86_64: openshift-hyperkube-4.10.0-202308291228.p0.g26fdcdf.assembly.stream.el7.x86_64.rpm Red Hat OpenShift Container Platform4.10: Source: kernel-4.18.0-305.103.1.el8_4.src.rpm kernel-rt-4.18.0-305.103.1.rt7.178.el8_4.src.rpm openshift-4.10.0-202308291228.p0.g26fdcdf.assembly.stream.el8.src.rpm aarch64: bpftool-4.18.0-305.103.1.el8_4.aarch64.rpm bpftool-debuginfo-4.18.0-305.103.1.el8_4.aarch64.rpm kernel-4.18.0-305.103.1.el8_4.aarch64.rpm kernel-core-4.18.0-305.103.1.el8_4.aarch64.rpm kernel-cross-headers-4.18.0-305.103.1.el8_4.aarch64.rpm kernel-debug-4.18.0-305.103.1.el8_4.aarch64.rpm kernel-debug-core-4.18.0-305.103.1.el8_4.aarch64.rpm kernel-debug-debuginfo-4.18.0-305.103.1.el8_4.aarch64.rpm kernel-debug-devel-4.18.0-305.103.1.el8_4.aarch64.rpm kernel-debug-modules-4.18.0-305.103.1.el8_4.aarch64.rpm kernel-debug-modules-extra-4.18.0-305.103.1.el8_4.aarch64.rpm kernel-debug-modules-internal-4.18.0-305.103.1.el8_4.aarch64.rpm kernel-debuginfo-4.18.0-305.103.1.el8_4.aarch64.rpm kernel-debuginfo-common-aarch64-4.18.0-305.103.1.el8_4.aarch64.rpm kernel-devel-4.18.0-305.103.1.el8_4.aarch64.rpm kernel-headers-4.18.0-305.103.1.el8_4.aarch64.rpm kernel-modules-4.18.0-305.103.1.el8_4.aarch64.rpm kernel-modules-extra-4.18.0-305.103.1.el8_4.aarch64.rpm kernel-modules-internal-4.18.0-305.103.1.el8_4.aarch64.rpm kernel-selftests-internal-4.18.0-305.103.1.el8_4.aarch64.rpm kernel-tools-4.18.0-305.103.1.el8_4.aarch64.rpm kernel-tools-debuginfo-4.18.0-305.103.1.el8_4.aarch64.rpm kernel-tools-libs-4.18.0-305.103.1.el8_4.aarch64.rpm kernel-tools-libs-devel-4.18.0-305.103.1.el8_4.aarch64.rpm openshift-hyperkube-4.10.0-202308291228.p0.g26fdcdf.assembly.stream.el8.aarch64.rpm perf-4.18.0-305.103.1.el8_4.aarch64.rpm perf-debuginfo-4.18.0-305.103.1.el8_4.aarch64.rpm python3-perf-4.18.0-305.103.1.el8_4.aarch64.rpm python3-perf-debuginfo-4.18.0-305.103.1.el8_4.aarch64.rpm noarch: kernel-doc-4.18.0-305.103.1.el8_4.noarch.rpm ppc64le: bpftool-4.18.0-305.103.1.el8_4.ppc64le.rpm bpftool-debuginfo-4.18.0-305.103.1.el8_4.ppc64le.rpm kernel-4.18.0-305.103.1.el8_4.ppc64le.rpm kernel-core-4.18.0-305.103.1.el8_4.ppc64le.rpm kernel-cross-headers-4.18.0-305.103.1.el8_4.ppc64le.rpm kernel-debug-4.18.0-305.103.1.el8_4.ppc64le.rpm kernel-debug-core-4.18.0-305.103.1.el8_4.ppc64le.rpm kernel-debug-debuginfo-4.18.0-305.103.1.el8_4.ppc64le.rpm kernel-debug-devel-4.18.0-305.103.1.el8_4.ppc64le.rpm kernel-debug-modules-4.18.0-305.103.1.el8_4.ppc64le.rpm kernel-debug-modules-extra-4.18.0-305.103.1.el8_4.ppc64le.rpm kernel-debug-modules-internal-4.18.0-305.103.1.el8_4.ppc64le.rpm kernel-debuginfo-4.18.0-305.103.1.el8_4.ppc64le.rpm kernel-debuginfo-common-ppc64le-4.18.0-305.103.1.el8_4.ppc64le.rpm kernel-devel-4.18.0-305.103.1.el8_4.ppc64le.rpm kernel-headers-4.18.0-305.103.1.el8_4.ppc64le.rpm kernel-ipaclones-internal-4.18.0-305.103.1.el8_4.ppc64le.rpm kernel-modules-4.18.0-305.103.1.el8_4.ppc64le.rpm kernel-modules-extra-4.18.0-305.103.1.el8_4.ppc64le.rpm kernel-modules-internal-4.18.0-305.103.1.el8_4.ppc64le.rpm kernel-selftests-internal-4.18.0-305.103.1.el8_4.ppc64le.rpm kernel-tools-4.18.0-305.103.1.el8_4.ppc64le.rpm kernel-tools-debuginfo-4.18.0-305.103.1.el8_4.ppc64le.rpm kernel-tools-libs-4.18.0-305.103.1.el8_4.ppc64le.rpm kernel-tools-libs-devel-4.18.0-305.103.1.el8_4.ppc64le.rpm openshift-hyperkube-4.10.0-202308291228.p0.g26fdcdf.assembly.stream.el8.ppc64le.rpm perf-4.18.0-305.103.1.el8_4.ppc64le.rpm perf-debuginfo-4.18.0-305.103.1.el8_4.ppc64le.rpm python3-perf-4.18.0-305.103.1.el8_4.ppc64le.rpm python3-perf-debuginfo-4.18.0-305.103.1.el8_4.ppc64le.rpm s390x: bpftool-4.18.0-305.103.1.el8_4.s390x.rpm bpftool-debuginfo-4.18.0-305.103.1.el8_4.s390x.rpm kernel-4.18.0-305.103.1.el8_4.s390x.rpm kernel-core-4.18.0-305.103.1.el8_4.s390x.rpm kernel-cross-headers-4.18.0-305.103.1.el8_4.s390x.rpm kernel-debug-4.18.0-305.103.1.el8_4.s390x.rpm kernel-debug-core-4.18.0-305.103.1.el8_4.s390x.rpm kernel-debug-debuginfo-4.18.0-305.103.1.el8_4.s390x.rpm kernel-debug-devel-4.18.0-305.103.1.el8_4.s390x.rpm kernel-debug-modules-4.18.0-305.103.1.el8_4.s390x.rpm kernel-debug-modules-extra-4.18.0-305.103.1.el8_4.s390x.rpm kernel-debug-modules-internal-4.18.0-305.103.1.el8_4.s390x.rpm kernel-debuginfo-4.18.0-305.103.1.el8_4.s390x.rpm kernel-debuginfo-common-s390x-4.18.0-305.103.1.el8_4.s390x.rpm kernel-devel-4.18.0-305.103.1.el8_4.s390x.rpm kernel-headers-4.18.0-305.103.1.el8_4.s390x.rpm kernel-modules-4.18.0-305.103.1.el8_4.s390x.rpm kernel-modules-extra-4.18.0-305.103.1.el8_4.s390x.rpm kernel-modules-internal-4.18.0-305.103.1.el8_4.s390x.rpm kernel-selftests-internal-4.18.0-305.103.1.el8_4.s390x.rpm kernel-tools-4.18.0-305.103.1.el8_4.s390x.rpm kernel-tools-debuginfo-4.18.0-305.103.1.el8_4.s390x.rpm kernel-zfcpdump-4.18.0-305.103.1.el8_4.s390x.rpm kernel-zfcpdump-core-4.18.0-305.103.1.el8_4.s390x.rpm kernel-zfcpdump-debuginfo-4.18.0-305.103.1.el8_4.s390x.rpm kernel-zfcpdump-devel-4.18.0-305.103.1.el8_4.s390x.rpm kernel-zfcpdump-modules-4.18.0-305.103.1.el8_4.s390x.rpm kernel-zfcpdump-modules-extra-4.18.0-305.103.1.el8_4.s390x.rpm kernel-zfcpdump-modules-internal-4.18.0-305.103.1.el8_4.s390x.rpm openshift-hyperkube-4.10.0-202308291228.p0.g26fdcdf.assembly.stream.el8.s390x.rpm perf-4.18.0-305.103.1.el8_4.s390x.rpm perf-debuginfo-4.18.0-305.103.1.el8_4.s390x.rpm python3-perf-4.18.0-305.103.1.el8_4.s390x.rpm python3-perf-debuginfo-4.18.0-305.103.1.el8_4.s390x.rpm x86_64: bpftool-4.18.0-305.103.1.el8_4.x86_64.rpm bpftool-debuginfo-4.18.0-305.103.1.el8_4.x86_64.rpm kernel-4.18.0-305.103.1.el8_4.x86_64.rpm kernel-core-4.18.0-305.103.1.el8_4.x86_64.rpm kernel-cross-headers-4.18.0-305.103.1.el8_4.x86_64.rpm kernel-debug-4.18.0-305.103.1.el8_4.x86_64.rpm kernel-debug-core-4.18.0-305.103.1.el8_4.x86_64.rpm kernel-debug-debuginfo-4.18.0-305.103.1.el8_4.x86_64.rpm kernel-debug-devel-4.18.0-305.103.1.el8_4.x86_64.rpm kernel-debug-modules-4.18.0-305.103.1.el8_4.x86_64.rpm kernel-debug-modules-extra-4.18.0-305.103.1.el8_4.x86_64.rpm kernel-debug-modules-internal-4.18.0-305.103.1.el8_4.x86_64.rpm kernel-debuginfo-4.18.0-305.103.1.el8_4.x86_64.rpm kernel-debuginfo-common-x86_64-4.18.0-305.103.1.el8_4.x86_64.rpm kernel-devel-4.18.0-305.103.1.el8_4.x86_64.rpm kernel-headers-4.18.0-305.103.1.el8_4.x86_64.rpm kernel-ipaclones-internal-4.18.0-305.103.1.el8_4.x86_64.rpm kernel-modules-4.18.0-305.103.1.el8_4.x86_64.rpm kernel-modules-extra-4.18.0-305.103.1.el8_4.x86_64.rpm kernel-modules-internal-4.18.0-305.103.1.el8_4.x86_64.rpm kernel-rt-4.18.0-305.103.1.rt7.178.el8_4.x86_64.rpm kernel-rt-core-4.18.0-305.103.1.rt7.178.el8_4.x86_64.rpm kernel-rt-debug-4.18.0-305.103.1.rt7.178.el8_4.x86_64.rpm kernel-rt-debug-core-4.18.0-305.103.1.rt7.178.el8_4.x86_64.rpm kernel-rt-debug-debuginfo-4.18.0-305.103.1.rt7.178.el8_4.x86_64.rpm kernel-rt-debug-devel-4.18.0-305.103.1.rt7.178.el8_4.x86_64.rpm kernel-rt-debug-kvm-4.18.0-305.103.1.rt7.178.el8_4.x86_64.rpm kernel-rt-debug-modules-4.18.0-305.103.1.rt7.178.el8_4.x86_64.rpm kernel-rt-debug-modules-extra-4.18.0-305.103.1.rt7.178.el8_4.x86_64.rpm kernel-rt-debug-modules-internal-4.18.0-305.103.1.rt7.178.el8_4.x86_64.rpm kernel-rt-debuginfo-4.18.0-305.103.1.rt7.178.el8_4.x86_64.rpm kernel-rt-debuginfo-common-x86_64-4.18.0-305.103.1.rt7.178.el8_4.x86_64.rpm kernel-rt-devel-4.18.0-305.103.1.rt7.178.el8_4.x86_64.rpm kernel-rt-kvm-4.18.0-305.103.1.rt7.178.el8_4.x86_64.rpm kernel-rt-modules-4.18.0-305.103.1.rt7.178.el8_4.x86_64.rpm kernel-rt-modules-extra-4.18.0-305.103.1.rt7.178.el8_4.x86_64.rpm kernel-rt-modules-internal-4.18.0-305.103.1.rt7.178.el8_4.x86_64.rpm kernel-rt-selftests-internal-4.18.0-305.103.1.rt7.178.el8_4.x86_64.rpm kernel-selftests-internal-4.18.0-305.103.1.el8_4.x86_64.rpm kernel-tools-4.18.0-305.103.1.el8_4.x86_64.rpm kernel-tools-debuginfo-4.18.0-305.103.1.el8_4.x86_64.rpm kernel-tools-libs-4.18.0-305.103.1.el8_4.x86_64.rpm kernel-tools-libs-devel-4.18.0-305.103.1.el8_4.x86_64.rpm openshift-hyperkube-4.10.0-202308291228.p0.g26fdcdf.assembly.stream.el8.x86_64.rpm perf-4.18.0-305.103.1.el8_4.x86_64.rpm perf-debuginfo-4.18.0-305.103.1.el8_4.x86_64.rpm python3-perf-4.18.0-305.103.1.el8_4.x86_64.rpm python3-perf-debuginfo-4.18.0-305.103.1.el8_4.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are availablefrom https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2023-1260 https://access.redhat.com/security/updates/classification/#important https://docs.redhat.com/en/documentation/openshift_container_platform/4.10/html/release_notes/ocp-4-10-release-notes 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2023 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAEBCAAGBQJk+CVcAAoJENzjgjWX9erEjbEP/R9n2T42ujovAYsC2NLjdiza 5PVBfRYCOpopGFJeh2cqNmf2nLyUrCS7foK23etXLzso0WejucXpkCa0DQ/Z0sEL AyruljQAXdFH8Ej5ior5ll08qAbncXcMG8+sI4XUoNz5mC7X0dARk+lkrngJwfuN lYs7fdyblVzAWRNEpvLAmapaceODcSvEwrzz6+O5AfFq+4iOjejYFuow7vUnN2eC JXvn0n1wPWe8PAGWGpTGqjENtI31lgO5r/6atYurDBKXGlqfVRgz2vSzl1S6WuqZ zERAy3Fnt6VeRB9wepwB0Kx2ApyWQjRVsmBMd3Csr9Cb4aX+2ungv7sUQWlWKKlF 6Km2E9LYmR27HQdfAJl6htoXCWyyExdZOkn/0gmIQKOqSNUQUxM47Jf1LNE2+aCS 3HaCAlnJZuQWGFVUP2EF+N515DJNSgxz2PbHdhiSdbdEjCg4BnOcotDVcXdfczn+ JgeH26rh2eQuPoBlI0wZjXhXirUEhWQBjZ2eeyFyjnKrWFG63V0MZ7ZnC+NN3QNy kHCstkMe0m8dilbIsWLE55yenTVNhQbWdxNr5F20PSDKRyuu0z9G30GZykP9XK/s 5MeBucRvIjEA0k/qnzNlhlmtHGEve1zovUBOdPM7xF0ik46EoDwM4iHIRjQW5qFV ggho1OT/ITMtJgHIZHou =SPxY -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Sep 06, 2023
•Important
Red Hat
98
security advisorymoderatesecurity updateRedHat: RHSA-2023:4730-01 Moderate: OpenShift 4.13.10 Security Patch
Red Hat OpenShift Container Platform release 4.13.10 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.13.. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ===================================================================== Red Hat Security Advisory Synopsis: Moderate: OpenShift Container Platform 4.13.10 security update Advisory ID: RHSA-2023:4730-01 Product: Red Hat OpenShift Enterprise Advisory URL: https://access.redhat.com/errata/RHSA-2023:4730 Issue date: 2023-08-30 CVE Names: CVE-2021-20329 CVE-2023-3899 ===================================================================== 1. Summary: Red Hat OpenShift Container Platform release 4.13.10 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.13. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Description: Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.13.10. See the following advisory for the container images for this release: https://access.redhat.com/errata/RHSA-2023:4731 Security Fix(es): * mongo-go-driver: specific cstrings input may not be properly validated (CVE-2021-20329) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. All OpenShift Container Platform 4.13 users areadvised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.13/html/updating_clusters/updating-cluster-cli 3. Solution: For OpenShift Container Platform 4.13 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update: https://docs.redhat.com/en/documentation/openshift_container_platform/4.13/html/release_notes/ocp-4-13-release-notes 4. Bugs fixed (https://bugzilla.redhat.com/): 1971033 - CVE-2021-20329 mongo-go-driver: specific cstrings input may not be properly validated 5. JIRA issues fixed (https://redhat.atlassian.net/jira/projects): OCPBUGS-14954 - bf2-switch-mode.sh fails if multiple devices are detected OCPBUGS-15830 - LocalStorageOperator does not create PersistentVolumes OCPBUGS-17425 - Internal error occurred: add operation does not apply: doc is missing path: "/spec/containers/0/volumeMounts/-": missing value OCPBUGS-17525 - Prefer wwn- and scsi- prefixed device-ids in LSO 6. References: https://access.redhat.com/security/cve/CVE-2021-20329 https://access.redhat.com/security/cve/CVE-2023-3899 https://access.redhat.com/security/updates/classification#moderate 7. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2023 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIcBAEBCAAGBQJk7+LZAAoJENzjgjWX9erEmxwP/jF5zvEuudLfW23JXDMe9Oa5 P3yGm2rTVr7HCs122rIyId5eleo76/FftdUAsy8BkUX2lLvktB61jXFXsVa++wrV YeWt9tXb9Lh2M8eB6EaqsRbTqs71cWxJ15YGXF4HfiYSbT2ugaoJIMPsuuFZYxsB 9Qdrulr/fU1/mVhsnQKDcNOouiDzbvPT6rGtecgK+qiJ5yc6VpSDw061xma0GDp1 wbv70OLv0Tt3yyPl+8+7Re9PWgNf6/0jaP3ebdc+fV6DWxfVgtJS1ude6n7Lumt4 Baz0J8u1bdEb5MLFgS8hXp8g0mAhPrTF36/Hk14rEgNT/3pkAe0N3VnGbyAc/wj8 t6CpilttcdF8NpdAM8ON4gLnUM9naoCwzdYmR7FDvyghbZmeXLLBiUy0B2pHes6g r4iLOK/9R5+8s4OIpT7aPMLXdGe0dKmlcQSB4xQIdBgTdsum/Li34Y6VT/gCWddv OjRUhBl3CkFtKutPmaBWtbCBmhWrYdQ1702QqhVxk+L6FKjFbOew48RaV+ZacExr kBMoXcWchOXfUxqljvuuAlXUdysvxKiXjMf4WjkZ0BaHhTsb3OZUXEreUTnGGYvK 9659sjfkqLCGsn59ZYosv2O5mj8Dclxf6mYlcvzfTjnV5+QDi9F6IrWKIEP6hz+b eyPdiQLDi4sj27N+AtZs =3QJE -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Aug 31, 2023
Red Hat
98
security advisorymoderatesecurity updateRed Hat OpenShift 4.12: RHSA-2023-4674-01 Moderate: Security Update
Red Hat OpenShift Container Platform release 4.12.30 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.12.. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ===================================================================== Red Hat Security Advisory Synopsis: Moderate: OpenShift Container Platform 4.12.30 packages and security update Advisory ID: RHSA-2023:4674-01 Product: Red Hat OpenShift Enterprise Advisory URL: https://access.redhat.com/errata/RHSA-2023:4674 Issue date: 2023-08-23 CVE Names: CVE-2022-27664 ===================================================================== 1. Summary: Red Hat OpenShift Container Platform release 4.12.30 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.12. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat OpenShift Container Platform 4.12 - aarch64, ppc64le, s390x, x86_64 3. Description: Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.12.30. See the following advisory for the container images for this release: https://access.redhat.com/errata/RHSA-2023:4671 Security Fix(es): * golang: net/http: handle server errors after sending GOAWAY (CVE-2022-27664) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, referto the CVE page(s) listed in the References section. All OpenShift Container Platform 4.12 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html/updating_clusters/updating-cluster-cli 4. Solution: For OpenShift Container Platform 4.12 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update: https://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html/release_notes/ocp-4-12-release-notes 5. Bugs fixed (https://bugzilla.redhat.com/): 2124669 - CVE-2022-27664 golang: net/http: handle server errors after sending GOAWAY 6. Package List: Red Hat OpenShift Container Platform4.12: Source: cri-o-1.25.4-4.rhaos4.12.gitb9319a2.el8.src.rpm openshift-clients-4.12.0-202308151125.p0.gf61957e.assembly.stream.el8.src.rpm aarch64: cri-o-1.25.4-4.rhaos4.12.gitb9319a2.el8.aarch64.rpm cri-o-debuginfo-1.25.4-4.rhaos4.12.gitb9319a2.el8.aarch64.rpm cri-o-debugsource-1.25.4-4.rhaos4.12.gitb9319a2.el8.aarch64.rpm openshift-clients-4.12.0-202308151125.p0.gf61957e.assembly.stream.el8.aarch64.rpm ppc64le: cri-o-1.25.4-4.rhaos4.12.gitb9319a2.el8.ppc64le.rpm cri-o-debuginfo-1.25.4-4.rhaos4.12.gitb9319a2.el8.ppc64le.rpm cri-o-debugsource-1.25.4-4.rhaos4.12.gitb9319a2.el8.ppc64le.rpm openshift-clients-4.12.0-202308151125.p0.gf61957e.assembly.stream.el8.ppc64le.rpm s390x: cri-o-1.25.4-4.rhaos4.12.gitb9319a2.el8.s390x.rpm cri-o-debuginfo-1.25.4-4.rhaos4.12.gitb9319a2.el8.s390x.rpm cri-o-debugsource-1.25.4-4.rhaos4.12.gitb9319a2.el8.s390x.rpm openshift-clients-4.12.0-202308151125.p0.gf61957e.assembly.stream.el8.s390x.rpm x86_64: cri-o-1.25.4-4.rhaos4.12.gitb9319a2.el8.x86_64.rpm cri-o-debuginfo-1.25.4-4.rhaos4.12.gitb9319a2.el8.x86_64.rpm cri-o-debugsource-1.25.4-4.rhaos4.12.gitb9319a2.el8.x86_64.rpm openshift-clients-4.12.0-202308151125.p0.gf61957e.assembly.stream.el8.x86_64.rpm openshift-clients-redistributable-4.12.0-202308151125.p0.gf61957e.assembly.stream.el8.x86_64.rpm Red Hat OpenShift Container Platform 4.12: Source: openshift-clients-4.12.0-202308151125.p0.gf61957e.assembly.stream.el9.src.rpm aarch64: openshift-clients-4.12.0-202308151125.p0.gf61957e.assembly.stream.el9.aarch64.rpm ppc64le: openshift-clients-4.12.0-202308151125.p0.gf61957e.assembly.stream.el9.ppc64le.rpm s390x: openshift-clients-4.12.0-202308151125.p0.gf61957e.assembly.stream.el9.s390x.rpm x86_64: openshift-clients-4.12.0-202308151125.p0.gf61957e.assembly.stream.el9.x86_64.rpm openshift-clients-redistributable-4.12.0-202308151125.p0.gf61957e.assembly.stream.el9.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are availablefrom https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2022-27664 https://access.redhat.com/security/updates/classification#moderate https://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html/release_notes/ocp-4-12-release-notes 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2023 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAEBCAAGBQJk5nCbAAoJENzjgjWX9erEpc0P/1+iF4XNpzS6djOacDQoIDps 7ChiCnOn/6WuLeuXTpAPugngaaYDeK9Zdmbi9SOgq9OL+iVUJd9XsMGCShb1hHZJ 6NquTZbjI55WrVI192A8TakFjCu1jOgpb4BjpWODMQ+G8uVs6P0DvNdxjiApQioy rjglbitP0QsEWmLPNzcYVJsTfqrySTzo6HQVg15MP9MlDf/pRzWtIgFrb0ZKqVyk LDwYXEta7ngz+C3yJpdE6kpV+U+k4VqEJzUeeooclDt9EK8W+fjfQydQ5ynHTUKJ 5plSHbonr9J0v/KGGK+CCSAM3oV3/11t1gLMsckFnco0X5cApaeqaBTqIgN1Sprc a3NfpJWxR7e94l4SljOPlnMvFs9qh1TFWBPl163EEyeYCSBSAfd7dZGFTW4wf0dn /DDwpGclvTezU/xkJLjqcyfJlM0Jiendt9BHUZbRL2bh03Hc+f94SZEl2IOsRN5D DV75avEWLBWwcKaQ8bJLwkFeG6759jOx8GhOV5Hsxiwo41OQbEFgoZg3QMabX6aU iKKmp3u24YQ65osakIC17J79WuRKu9WSpucUXZpoiTylnHpi/4UcYTMYjOtf4ELH iDcd5jwFe7bWWGPQlgsw+KhQXVVy4kDwDbyYeOreqBOqJnLeqatfNI2f1D7fCJDp B3TcRpIruZnY7370tddX =xepm -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Aug 23, 2023
Red Hat
98
security advisorymoderatesecurity updateRed Hat OpenShift 4.12 Platform RHSA-2023:3924-01 Moderate Security Patch
Red Hat OpenShift Container Platform release 4.12.23 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.12.. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: OpenShift Container Platform 4.12.23 security update Advisory ID: RHSA-2023:3924-01 Product: Red Hat OpenShift Enterprise Advisory URL: https://access.redhat.com/errata/RHSA-2023:3924 Issue date: 2023-07-06 CVE Names: CVE-2023-3089 ==================================================================== 1. Summary: Red Hat OpenShift Container Platform release 4.12.23 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.12. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat OpenShift Container Platform 4.12 - aarch64, noarch, ppc64le, s390x, x86_64 3. Description: Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.12.23. See the following advisory for the container images for this release: https://access.redhat.com/errata/RHSA-2023:3925 Security Fix(es): * openshift: OCP & FIPS mode (CVE-2023-3089) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the Referencessection. All OpenShift Container Platform 4.12 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html/updating_clusters/updating-cluster-cli 4. Solution: For OpenShift Container Platform 4.12 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update: https://docs.redhat.com/en/documentation/openshift_container_platform/4.12/html/release_notes/ocp-4-12-release-notes 5. Bugs fixed (https://bugzilla.redhat.com/): 2212085 - CVE-2023-3089 openshift: OCP & FIPS mode 6. JIRA issues fixed (https://issues.redhat.com/): OCPBUGS-15554 - Placeholder bug for OCP 4.12.0 rpm release 7. Package List: Red Hat OpenShift Container Platform4.12: Source: container-selinux-2.215.0-1.rhaos4.12.el8.src.rpm openshift-4.12.0-202306251254.p0.gc43ddea.assembly.stream.el8.src.rpm openshift-ansible-4.12.0-202306230041.p0.g74dc7b3.assembly.stream.el8.src.rpm openshift-clients-4.12.0-202306230041.p0.gea7c11a.assembly.stream.el8.src.rpm openshift-kuryr-4.12.0-202306230041.p0.g31dd228.assembly.stream.el8.src.rpm openshift4-aws-iso-4.12.0-202306230041.p0.gd2acdd5.assembly.stream.el8.src.rpm ovn23.06-23.06.0-13.el8fdp.src.rpm aarch64: openshift-clients-4.12.0-202306230041.p0.gea7c11a.assembly.stream.el8.aarch64.rpm openshift-hyperkube-4.12.0-202306251254.p0.gc43ddea.assembly.stream.el8.aarch64.rpm ovn23.06-23.06.0-13.el8fdp.aarch64.rpm ovn23.06-central-23.06.0-13.el8fdp.aarch64.rpm ovn23.06-central-debuginfo-23.06.0-13.el8fdp.aarch64.rpm ovn23.06-debuginfo-23.06.0-13.el8fdp.aarch64.rpm ovn23.06-debugsource-23.06.0-13.el8fdp.aarch64.rpm ovn23.06-host-23.06.0-13.el8fdp.aarch64.rpm ovn23.06-host-debuginfo-23.06.0-13.el8fdp.aarch64.rpm ovn23.06-vtep-23.06.0-13.el8fdp.aarch64.rpm ovn23.06-vtep-debuginfo-23.06.0-13.el8fdp.aarch64.rpm noarch: container-selinux-2.215.0-1.rhaos4.12.el8.noarch.rpm openshift-ansible-4.12.0-202306230041.p0.g74dc7b3.assembly.stream.el8.noarch.rpm openshift-ansible-test-4.12.0-202306230041.p0.g74dc7b3.assembly.stream.el8.noarch.rpm openshift-kuryr-cni-4.12.0-202306230041.p0.g31dd228.assembly.stream.el8.noarch.rpm openshift-kuryr-common-4.12.0-202306230041.p0.g31dd228.assembly.stream.el8.noarch.rpm openshift-kuryr-controller-4.12.0-202306230041.p0.g31dd228.assembly.stream.el8.noarch.rpm openshift4-aws-iso-4.12.0-202306230041.p0.gd2acdd5.assembly.stream.el8.noarch.rpm python3-kuryr-kubernetes-4.12.0-202306230041.p0.g31dd228.assembly.stream.el8.noarch.rpm ppc64le: openshift-clients-4.12.0-202306230041.p0.gea7c11a.assembly.stream.el8.ppc64le.rpm openshift-hyperkube-4.12.0-202306251254.p0.gc43ddea.assembly.stream.el8.ppc64le.rpm ovn23.06-23.06.0-13.el8fdp.ppc64le.rpm ovn23.06-central-23.06.0-13.el8fdp.ppc64le.rpm ovn23.06-central-debuginfo-23.06.0-13.el8fdp.ppc64le.rpm ovn23.06-debuginfo-23.06.0-13.el8fdp.ppc64le.rpm ovn23.06-debugsource-23.06.0-13.el8fdp.ppc64le.rpm ovn23.06-host-23.06.0-13.el8fdp.ppc64le.rpm ovn23.06-host-debuginfo-23.06.0-13.el8fdp.ppc64le.rpm ovn23.06-vtep-23.06.0-13.el8fdp.ppc64le.rpm ovn23.06-vtep-debuginfo-23.06.0-13.el8fdp.ppc64le.rpm s390x: openshift-clients-4.12.0-202306230041.p0.gea7c11a.assembly.stream.el8.s390x.rpm openshift-hyperkube-4.12.0-202306251254.p0.gc43ddea.assembly.stream.el8.s390x.rpm ovn23.06-23.06.0-13.el8fdp.s390x.rpm ovn23.06-central-23.06.0-13.el8fdp.s390x.rpm ovn23.06-central-debuginfo-23.06.0-13.el8fdp.s390x.rpm ovn23.06-debuginfo-23.06.0-13.el8fdp.s390x.rpm ovn23.06-debugsource-23.06.0-13.el8fdp.s390x.rpm ovn23.06-host-23.06.0-13.el8fdp.s390x.rpm ovn23.06-host-debuginfo-23.06.0-13.el8fdp.s390x.rpm ovn23.06-vtep-23.06.0-13.el8fdp.s390x.rpm ovn23.06-vtep-debuginfo-23.06.0-13.el8fdp.s390x.rpm x86_64: openshift-clients-4.12.0-202306230041.p0.gea7c11a.assembly.stream.el8.x86_64.rpm openshift-clients-redistributable-4.12.0-202306230041.p0.gea7c11a.assembly.stream.el8.x86_64.rpm openshift-hyperkube-4.12.0-202306251254.p0.gc43ddea.assembly.stream.el8.x86_64.rpm ovn23.06-23.06.0-13.el8fdp.x86_64.rpm ovn23.06-central-23.06.0-13.el8fdp.x86_64.rpm ovn23.06-central-debuginfo-23.06.0-13.el8fdp.x86_64.rpm ovn23.06-debuginfo-23.06.0-13.el8fdp.x86_64.rpm ovn23.06-debugsource-23.06.0-13.el8fdp.x86_64.rpm ovn23.06-host-23.06.0-13.el8fdp.x86_64.rpm ovn23.06-host-debuginfo-23.06.0-13.el8fdp.x86_64.rpm ovn23.06-vtep-23.06.0-13.el8fdp.x86_64.rpm ovn23.06-vtep-debuginfo-23.06.0-13.el8fdp.x86_64.rpm Red Hat OpenShift Container Platform4.12: Source: openshift-4.12.0-202306251254.p0.gc43ddea.assembly.stream.el9.src.rpm openshift-clients-4.12.0-202306230041.p0.gea7c11a.assembly.stream.el9.src.rpm aarch64: openshift-clients-4.12.0-202306230041.p0.gea7c11a.assembly.stream.el9.aarch64.rpm openshift-hyperkube-4.12.0-202306251254.p0.gc43ddea.assembly.stream.el9.aarch64.rpm ppc64le: openshift-clients-4.12.0-202306230041.p0.gea7c11a.assembly.stream.el9.ppc64le.rpm openshift-hyperkube-4.12.0-202306251254.p0.gc43ddea.assembly.stream.el9.ppc64le.rpm s390x: openshift-clients-4.12.0-202306230041.p0.gea7c11a.assembly.stream.el9.s390x.rpm openshift-hyperkube-4.12.0-202306251254.p0.gc43ddea.assembly.stream.el9.s390x.rpm x86_64: openshift-clients-4.12.0-202306230041.p0.gea7c11a.assembly.stream.el9.x86_64.rpm openshift-clients-redistributable-4.12.0-202306230041.p0.gea7c11a.assembly.stream.el9.x86_64.rpm openshift-hyperkube-4.12.0-202306251254.p0.gc43ddea.assembly.stream.el9.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 8. References: https://access.redhat.com/security/cve/CVE-2023-3089 https://access.redhat.com/security/updates/classification/#moderate https://access.redhat.com/security/vulnerabilities/RHSB-2023-001 9. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2023 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIcBAEBCAAGBQJkpuK2AAoJENzjgjWX9erED1sP/icqm9LST7YtZknWJ1ckfhHB AFAHunAp4sIGzfBy85rpka7ZEX8vsWKLnhEFjqGbUvfUzrvMdJSLHXuYriv07094 6wCPUV09r0b9zj3e6SZugIU91B9xJDn7WOGPilNmfYwmneuZpmJSBPXopOYQX8eP F0NehXcRU3I0efeo0pRpzZYxWuRaN6/281qUtMa3FIgrFKZpHe+65IxVhMBsJyul gLpYR4S1K3weoYtFUPMgGHHhjgX8hdoF2M8kz+0TKfEoN/B5B+LvL4Qp4WCZW2j3 3wy85lCZYijCCU+f2jaedumNlvwY26xON9OgUgVs8cIkGe9HhAoxhX5dReOH53h1 Ay+dxJTgC9pXT0tmlAbGQjUBLAGOMhzGFS+evn45ba+dQurQLKd2u6KaOJvdR9Vn ALgovZbHo8UkvLyZYeUEKGn0UMUQlOHkyzdcfGXtJ6QwygrfeGw0QElXJjpJo6ga hH4oSMtgQ/w7t74EisUd6myvqvP7BrFgEIiLtpM1DFzNTO7gf3ODOtHuxxsl9SYQ FwbG8Xw9xiAhHle+8kFzHhUGvpxf1pIwCwU2oAnZkIbhhLvXC2f9gcEZ3W5i/hwD cVb2/fYMYngD/oyI7f334Mm9ujEOquNk503VF/bB0YCAit3widD+weHWAp4Ntlif tVVJhSZwStb3jYZaSbtz =JF7v -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Jul 06, 2023
•Important
Red Hat
98
security advisorysecurity impactcloud computingRed Hat OpenShift 4.10.61 RHSA-2023:3362-01 Critical: Resource Exhaustion
Red Hat OpenShift Container Platform release 4.10.61 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.10.. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: OpenShift Container Platform 4.10.61 packages and security update Advisory ID: RHSA-2023:3362-01 Product: Red Hat OpenShift Enterprise Advisory URL: https://access.redhat.com/errata/RHSA-2023:3362 Issue date: 2023-06-07 CVE Names: CVE-2023-1370 ==================================================================== 1. Summary: Red Hat OpenShift Container Platform release 4.10.61 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.10. Red Hat Product Security has rated this update as having a security impact of [impact]. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat OpenShift Container Platform 4.10 - aarch64, noarch, ppc64le, s390x, x86_64 3. Description: Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.10.61. See the following advisory for the container images for this release: https://access.redhat.com/errata/RHSA-2023:3363 Security Fix(es): * json-smart: Uncontrolled Resource Consumption vulnerability in json-smart (Resource Exhaustion) (CVE-2023-1370) For more details about the security issue(s), including the impact, a CVSS score,acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. All OpenShift Container Platform 4.10 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.10/html/updating_clusters/updating-cluster-cli 4. Solution: For OpenShift Container Platform 4.10 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update: https://docs.redhat.com/en/documentation/openshift_container_platform/4.10/html/release_notes/ocp-4-10-release-notes 5. Bugs fixed (https://bugzilla.redhat.com/): 2188542 - CVE-2023-1370 json-smart: Uncontrolled Resource Consumption vulnerability in json-smart (Resource Exhaustion) 6. Package List: Red Hat OpenShift Container Platform 4.10: Source: cri-o-1.23.5-15.rhaos4.10.git0bbb0d9.el7.src.rpm x86_64: cri-o-1.23.5-15.rhaos4.10.git0bbb0d9.el7.x86_64.rpm cri-o-debuginfo-1.23.5-15.rhaos4.10.git0bbb0d9.el7.x86_64.rpm Red Hat OpenShift Container Platform4.10: Source: cri-o-1.23.5-15.rhaos4.10.git0bbb0d9.el8.src.rpm jenkins-2-plugins-4.10.1684982411-1.el8.src.rpm python-sushy-4.1.6-0.20230517173625.5490eb6.el8.src.rpm aarch64: cri-o-1.23.5-15.rhaos4.10.git0bbb0d9.el8.aarch64.rpm cri-o-debuginfo-1.23.5-15.rhaos4.10.git0bbb0d9.el8.aarch64.rpm cri-o-debugsource-1.23.5-15.rhaos4.10.git0bbb0d9.el8.aarch64.rpm noarch: jenkins-2-plugins-4.10.1684982411-1.el8.noarch.rpm python3-sushy-4.1.6-0.20230517173625.5490eb6.el8.noarch.rpm python3-sushy-tests-4.1.6-0.20230517173625.5490eb6.el8.noarch.rpm ppc64le: cri-o-1.23.5-15.rhaos4.10.git0bbb0d9.el8.ppc64le.rpm cri-o-debuginfo-1.23.5-15.rhaos4.10.git0bbb0d9.el8.ppc64le.rpm cri-o-debugsource-1.23.5-15.rhaos4.10.git0bbb0d9.el8.ppc64le.rpm s390x: cri-o-1.23.5-15.rhaos4.10.git0bbb0d9.el8.s390x.rpm cri-o-debuginfo-1.23.5-15.rhaos4.10.git0bbb0d9.el8.s390x.rpm cri-o-debugsource-1.23.5-15.rhaos4.10.git0bbb0d9.el8.s390x.rpm x86_64: cri-o-1.23.5-15.rhaos4.10.git0bbb0d9.el8.x86_64.rpm cri-o-debuginfo-1.23.5-15.rhaos4.10.git0bbb0d9.el8.x86_64.rpm cri-o-debugsource-1.23.5-15.rhaos4.10.git0bbb0d9.el8.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2023-1370 https://access.redhat.com/security/updates/classification#important https://access.redhat.com/articles/11258 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2023 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIVAwUBZIBxJNzjgjWX9erEAQhamQ/+PoEojHvqGqsvDIj1LOAgnHpAEqBO9Grb 7dAxFAQbE9MmN4+z/5MbBJ87hF1yGIDBIgrlFzTQZA5JntAzx9h3eKfHLA3uRRH7 Oz+Kq3BBJcKXJLnQl8mW5XJ0+m+mrHluVNZR7ulIiNU02Wh+VaqrnbABwQMIaJ6k zNikRLi7QjHxlD/2NCY45PYaQ8TOuKDFSPj6r17k+s3wTzhkXpNzF+Ze3oc+0RxL /GylkcABQRZzWkhkgws1DLrHwq3k1ssj1yVVkrfVFx0y5039bdn6ud+btiu2Wbkw F7XawTyoP+bJr91yPowVyt2hqFeg/nl61VII5FShvy/SmsAkAOhj7Bym67Xmb52s gco307uxyLtHHLlGtZESov+PRkfhwR1gbEtojBgoHOz8XL2x2ZbwQSfPKFWAQGtU 6CoUkXlWLneUvW3Bs8PdMux9uDqs8k1FBuGq8TsTD+buhIRlzGaiN739hNwrTD5t hV/NYTk/pqds4hRuoOgda45sWVQCd/Q3ftBSk2cBdq6MQNGXFteK14J4tOw5iBsk GdHZRc/t7ODj35uNOY91UxN+Ls2+ehCyTxxvTSSPC9Td0uG2VJkAVfb6WUfxAN7Q ygbQeIspW3jOkgXh1ZeuIHyIQY2TibCY9yhOhOu6Gd1lCluAX/elUW7gJ5imJSsB xW2BM6srglo=esX2 -----END PGP SIGNATURE----- -- RHSA-announce mailing list
Jun 07, 2023
•Critical
Red Hat
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!