RHBA-2020:1328 - Bug Fix Advisory

Topic

Updated container images are now available for Red Hat OpenStack Platform
15.0 (Stein) for RHEL 8.

Description

Red Hat OpenStack Platform provides the facilities for building, deploying
and monitoring a private or public infrastructure-as-a-service (IaaS) cloud
running on commonly available physical hardware.

Solution

Before applying this update, ensure all previously released errata relevant
to your system have been applied.

Red Hat OpenStack Platform 15 runs on Red Hat Enterprise Linux 8.1.

The Red Hat OpenStack Platform 15 Release Notes contain the following:

• An explanation of the way in which the provided components interact to

form a working cloud computing environment.

• Technology Previews, Recommended Practices, and Known Issues.
• The channels required for Red Hat OpenStack Platform 15, including which

channels need to be enabled and disabled.

The Release Notes are available at:
https://access.redhat.com/documentation/en-us/red_hat_openstack_platform/

This update is available through 'yum update' on systems registered through
Red Hat Subscription Manager. For more information about Red Hat
Subscription Manager, see:

https://access.redhat.com/documentation/en-US/Red_Hat_Subscription_Management/1/html/RHSM/index.html

Affected Products

• Red Hat OpenStack for IBM Power 15 ppc64le
• Red Hat OpenStack 15 x86_64

Fixes

• BZ - 1817575 - Containers respin for CVE release
• BZ - 1819111 - CVE-2020-11100 haproxy: malformed HTTP/2 requests can lead to out-of-bounds writes

CVEs

• CVE-2019-11358
• CVE-2019-12781
• CVE-2019-14232
• CVE-2019-14233
• CVE-2019-14234
• CVE-2019-14235
• CVE-2020-5208
• CVE-2020-9543
• CVE-2020-10531
• CVE-2020-11100

References

(none)