Synopsis

Updated CFME 5.7.3 container images (httpd security update)

Type/Severity

Bug Fix Advisory

Topic

Updated container images are now available for Red Hat CloudForms 4.2.

Description

Red Hat CloudForms Management Engine delivers the insight, control, and automation needed to address the challenges of managing virtual environments. CloudForms Management Engine is built on Ruby on Rails, a model-view-controller (MVC) framework for web application development. Action Pack implements the controller and the view components.

In these CloudForms (CFME) container images, the httpd package has been updated to include an important security fix as described in the Security Advisory:

RHSA-2017:2479 Important: httpd security update

Solution

The container image provided by this update can be downloaded from the Red Hat Container Registry at registry.access.redhat.com using the "docker pull" command.

To set up Red Hat CloudForms for OpenShift: You will need to run the published template on your OpenShift cluster.

Affected Products

• Red Hat CloudForms 4.2 x86_64

Fixes

• BZ - 1488512 - Update 5.7.3 cfme-docker image to include the latest httpd package
• BZ - 1488514 - Update 5.7.3 cfme-openshift-app image to include the latest httpd package

CVEs

• CVE-2014-9365
• CVE-2014-9761
• CVE-2015-2806
• CVE-2015-3622
• CVE-2015-8776
• CVE-2015-8777
• CVE-2015-8778
• CVE-2015-8779
• CVE-2016-5483
• CVE-2016-5617
• CVE-2016-6664
• CVE-2016-7167
• CVE-2017-0553
• CVE-2017-1000061
• CVE-2017-3167
• CVE-2017-3169
• CVE-2017-3238
• CVE-2017-3243
• CVE-2017-3244
• CVE-2017-3258
• CVE-2017-3265
• CVE-2017-3291
• CVE-2017-3302
• CVE-2017-3308
• CVE-2017-3309
• CVE-2017-3312
• CVE-2017-3313
• CVE-2017-3317
• CVE-2017-3318
• CVE-2017-3453
• CVE-2017-3456
• CVE-2017-3464
• CVE-2017-3600
• CVE-2017-3651
• CVE-2017-7488
• CVE-2017-7668
• CVE-2017-7679
• CVE-2017-9287
• CVE-2017-9788

References

(none)

This erratum does not contain any packages.