- Issued:
- 2017-08-30
- Updated:
- 2017-08-30
RHBA-2017:2548 - Bug Fix Advisory
Synopsis
Update to Red Hat JBoss Middleware images to fix log4j CVE-2017-5645
Type/Severity
Bug Fix Advisory
Topic
Updates are now available for Red Hat JBoss Middleware images running in OpenShift Container Platform 3.5 and 3.6.
Description
Red Hat JBoss Middleware for OpenShift provides images for many of the Red Hat Middleware products, for use with OpenShift Container Platform, with on-premise or private cloud deployments.
This errata updates the following images by applying a fix for CVE-2017-5645 (https://access.redhat.com/security/cve/CVE-2017-5645): Red Hat JBoss Enterprise Application Platform 6.4, Red Hat JBoss Enterprise Application Platform 7.0, Red Hat JBoss Web Server 3.0, Red Hat JBoss Web Server 3.1, Red Hat JBoss Data Grid 6.5, Red Hat JBoss BPM Suite 6.3 Process Server, Red Hat JBoss BPM Suite 6.4 Process Server, Red Hat JBoss BRMS 6.3 Decision Server, Red Hat JBoss BRMS 6.4 Decision Server, and Red Hat Single Sign-On 7.0.
Solution
To update to the latest Red Hat JBoss Middleware images run the following
steps to pull in the content:
1. On your master host(s), ensure you are logged into the CLI as a cluster administrator or a user that has project administrator access to the global "openshift" project.
$ oc login -u system:admin
Run the following command to update the core set of OpenShift image streams in the "openshift" project:
$ for is in jboss-eap70-openshift \
jboss-eap64-openshift \
jboss-webserver30-tomcat7-openshift \
jboss-webserver30-tomcat8-openshift \
jboss-webserver31-tomcat7-openshift \
jboss-webserver31-tomcat8-openshift \
jboss-datagrid65-openshift \
jboss-processserver64-openshift \
jboss-processserver63-openshift \
jboss-decisionserver64-openshift \
jboss-decisionserver63-openshift \
redhat-sso70-openshift ;
do
oc -n openshift import-image ${is}
done
Affected Products
- Red Hat OpenShift Container Platform 3.6 x86_64
- Red Hat OpenShift Container Platform 3.5 x86_64
Fixes
(none)CVEs
References
(none)
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.