RHBA-2020:0305 - Bug Fix Advisory

Topic

This errata updates the Red Hat JBoss Data Virtualization 6.4 and Driver
for OpenShift 6.4 images for Red Hat OpenShift Container Platform 3.11.

Description

JBoss Data Virtualization 6.4 and Driver for OpenShift 6.4 images are updated to address the following security advisories: RHSA-2020:0227 and RHSA-2020:0196.

Users are advised to upgrade to these updated images to patch security vulnerabilities, fix bugs, and add any enhancements. Users should also rebuild all container images that use the JBoss Data Virtualization 6.4 and Driver for OpenShift 6.4 images.

Updated JBoss Data Virtualization 6.4 and Driver for OpenShift 6.4 images are available from the Red Hat Container Catalog.

Solution

The Red Hat OpenShift Container Platform 3.11 container images provided by this update can be downloaded from the Red Hat Container Registry at registry.access.redhat.com. Installation instructions for your platform are available at Red Hat Container Catalog.

Dockerfiles and scripts should be amended either to refer to this new image specifically or to the latest image generally.

Affected Products

• Red Hat OpenShift Container Platform 3.11 x86_64
• Red Hat OpenShift Container Platform 3.10 x86_64
• Red Hat OpenShift Container Platform 3.9 x86_64

Fixes

• BZ - 1781980 - CVE-2019-13734 sqlite: fts3: improve shadow table corruption detection

CVEs

• CVE-2019-13734
• CVE-2020-2583
• CVE-2020-2590
• CVE-2020-2593
• CVE-2020-2601
• CVE-2020-2604
• CVE-2020-2654
• CVE-2020-2659

References

• https://access.redhat.com/errata/RHSA-2020:0227
• https://access.redhat.com/errata/RHSA-2020:0196
• https://access.redhat.com/containers/?tab=images#/registry.access.redhat.com/jboss-datavirt-6/datavirt64-openshift
• https://access.redhat.com/containers/?tab=overview#/registry.access.redhat.com/jboss-datavirt-6/datavirt64-driver-openshift