- Issued:
- 2017-02-02
- Updated:
- 2017-02-06
RHBA-2017:0243 - Bug Fix Advisory
Synopsis
Update to Fuse Integration Services 1.0 Images and 2.0 Tech Preview Images
Type/Severity
Bug Fix Advisory
Topic
Update to Fuse Integration Services 1.0 images and Fuse Integration Services 2.0 Tech Preview images to move to a newer version of JDK 8 base image that addresses a number of CVEs.
Description
Red Hat JBoss Fuse Integration Services provides a set of tools and containerized xPaaS images that enable development, deployment, and management of integration microservices within OpenShift.
Solution
Before applying this update, make sure all previously released errata
relevant to your system have been applied.
For details on how to apply this update, refer to:
FIS 2.0 Tech Preview
https://access.redhat.com/documentation/en/red-hat-jboss-middleware-for-openshift/3/single/red-hat-jboss-fuse-integration-services-20-for-openshift/
Affected Products
- Red Hat OpenShift Container Platform 3.3 x86_64
Fixes
- BZ - 1360375 - HAWTAPP_VERSION of registry.access.redhat.com/jboss-fuse-6/fis-java-openshift
CVEs
- CVE-2016-0718
- CVE-2016-1248
- CVE-2016-2834
- CVE-2016-3107
- CVE-2016-3108
- CVE-2016-3111
- CVE-2016-3112
- CVE-2016-3728
- CVE-2016-4455
- CVE-2016-5011
- CVE-2016-5285
- CVE-2016-5384
- CVE-2016-5419
- CVE-2016-5420
- CVE-2016-5546
- CVE-2016-5547
- CVE-2016-5548
- CVE-2016-5552
- CVE-2016-5636
- CVE-2016-6313
- CVE-2016-7141
- CVE-2016-8635
- CVE-2017-3231
- CVE-2017-3241
- CVE-2017-3252
- CVE-2017-3253
- CVE-2017-3261
- CVE-2017-3272
- CVE-2017-3289
References
(none)
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.