RHBA-2021:4559 - Bug Fix Advisory

Topic

New and updated Application Stream container images are now available in the Red Hat Container Registry.

Description

Red Hat Enterprise Linux 8 Application Stream container images are based on the corresponding Application Stream component and the ubi8 base image.

The ubi8 base image has been updated to the latest version. The Application Stream container images have been updated to provide enhancements and bug fixes from the RHEL 8.5 release.

This update introduces the following new images:

ubi8/nginx-120
ubi8/ruby-30
ubi8/nodejs-16 as a Technology Preview
ubi8/nodejs-16-minimal as a Technology Preview

Note that a future update of the ubi8/nodejs-16 and ubi8/nodejs-16-minimal container images will provide a Long Term Support (LTS) version of Node.js 16, which will be fully supported.

The following Application Stream container images have been updated:

ubi8/httpd-24
rhel8/mariadb-103
rhel8/mariadb-105
rhel8/memcached
rhel8/mysql-80
rhel8/nginx-116
ubi8/nginx-118
ubi8/nodejs-12
ubi8/nodejs-14
ubi8/nodejs-14-minimal
ubi8/perl-526
ubi8/perl-530
ubi8/php-73
ubi8/php-74
rhel8/postgresql-10
rhel8/postgresql-12
rhel8/postgresql-13
rhel8/postgresql-96
ubi8/python-27
ubi8/python-36
ubi8/python-38
ubi8/python-39
rhel8/redis-5
rhel8/redis-6
ubi8/ruby-25
ubi8/ruby-26
ubi8/ruby-27
ubi8/s2i-base
ubi8/s2i-core
rhel8/varnish-6

To pull a container image, run the following command as root:

podman pull registry.redhat.io/<image_name>

For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.5 Release Notes linked from the References section.

For information on Red Hat scope of support for Technology Preview features, see Technology Preview Features Support Scope.

Solution

The container images provided by this update can be downloaded from the Red
Hat Container Registry at registry.redhat.io using the "podman pull"
command.

Affected Products

• Red Hat Enterprise Linux for x86_64 8 x86_64
• Red Hat Enterprise Linux for x86_64 - Extended Update Support Extension 8.8 x86_64
• Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.8 x86_64
• Red Hat Enterprise Linux for x86_64 - Extended Update Support Extension 8.6 x86_64
• Red Hat Enterprise Linux for x86_64 - Extended Update Support 8.6 x86_64
• Red Hat Enterprise Linux Server - AUS 8.6 x86_64
• Red Hat Enterprise Linux for IBM z Systems 8 s390x
• Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.8 s390x
• Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 8.6 s390x
• Red Hat Enterprise Linux for Power, little endian 8 ppc64le
• Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.8 ppc64le
• Red Hat Enterprise Linux for Power, little endian - Extended Update Support 8.6 ppc64le
• Red Hat Enterprise Linux Server - TUS 8.8 x86_64
• Red Hat Enterprise Linux Server - TUS 8.6 x86_64
• Red Hat Enterprise Linux for ARM 64 8 aarch64
• Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.8 aarch64
• Red Hat Enterprise Linux for ARM 64 - Extended Update Support 8.6 aarch64
• Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.8 ppc64le
• Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.6 ppc64le
• Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.8 x86_64
• Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.6 x86_64

Fixes

• BZ - 1925278 - RHEL8/UBI8 PHP images missing packages available in RHEL7
• BZ - 1984495 - rebuild of nodejs-14-minimal-container 8.5
• BZ - 1984497 - rebuild of memcached-container 8.5
• BZ - 1984499 - rebuild of s2i-core-container 8.5
• BZ - 1984500 - rebuild of redis-6-container 8.5
• BZ - 1984501 - rebuild of redis-5-container 8.5
• BZ - 1984502 - rebuild of nginx-118-container 8.5
• BZ - 1984503 - rebuild of nginx-116-container 8.5
• BZ - 1984504 - rebuild of postgresql-96-container 8.5
• BZ - 1984505 - rebuild of httpd-24-container 8.5
• BZ - 1984506 - rebuild of mariadb-103-container 8.5
• BZ - 1984508 - rebuild of s2i-base-container 8.5
• BZ - 1984509 - rebuild of postgresql-12-container 8.5
• BZ - 1984510 - rebuild of nodejs-14-container 8.5
• BZ - 1984514 - rebuild of varnish-6-container 8.5
• BZ - 1984517 - rebuild of mariadb-105-container 8.5
• BZ - 1984518 - rebuild of mysql-80-container 8.5
• BZ - 1984520 - rebuild of postgresql-10-container 8.5
• BZ - 1984522 - rebuild of postgresql-13-container 8.5
• BZ - 1984529 - rebuild of nodejs-12-container 8.5
• BZ - 1984530 - rebuild of python-39-container 8.5
• BZ - 1984532 - rebuild of ruby-26-container 8.5
• BZ - 1984533 - rebuild of ruby-25-container 8.5
• BZ - 1984536 - rebuild of python-36-container 8.5
• BZ - 1984537 - rebuild of ruby-27-container 8.5
• BZ - 1984540 - rebuild of php-74-container 8.5
• BZ - 1984541 - rebuild of perl-526-container 8.5
• BZ - 1984542 - rebuild of python-38-container 8.5
• BZ - 1984543 - rebuild of php-73-container 8.5
• BZ - 1984545 - rebuild of python-27-container 8.5
• BZ - 1984546 - rebuild of perl-530-container 8.5
• BZ - 2001020 - rebuild of nodejs-16-container 8.5
• BZ - 2001022 - rebuild of nginx-120-container 8.5
• BZ - 2001463 - Add nodejs-16 container image
• BZ - 2001498 - Add nodejs-16 minimal container image
• BZ - 2001501 - Add ruby-30 container image
• BZ - 2001503 - Add nginx-120 container image
• BZ - 2001588 - rebuild of nodejs-16-minimal-container 8.5
• BZ - 2001589 - rebuild of ruby-30-container 8.5

CVEs

• CVE-2018-20673
• CVE-2018-25009
• CVE-2018-25010
• CVE-2018-25012
• CVE-2018-25013
• CVE-2018-25014
• CVE-2019-5827
• CVE-2019-13750
• CVE-2019-13751
• CVE-2019-17594
• CVE-2019-17595
• CVE-2019-18218
• CVE-2019-19603
• CVE-2019-20838
• CVE-2020-0427
• CVE-2020-12762
• CVE-2020-13435
• CVE-2020-14145
• CVE-2020-14155
• CVE-2020-16135
• CVE-2020-17541
• CVE-2020-24370
• CVE-2020-24502
• CVE-2020-24503
• CVE-2020-24504
• CVE-2020-24586
• CVE-2020-24587
• CVE-2020-24588
• CVE-2020-26139
• CVE-2020-26140
• CVE-2020-26141
• CVE-2020-26143
• CVE-2020-26144
• CVE-2020-26145
• CVE-2020-26146
• CVE-2020-26147
• CVE-2020-27777
• CVE-2020-29368
• CVE-2020-29660
• CVE-2020-35448
• CVE-2020-35521
• CVE-2020-35522
• CVE-2020-35523
• CVE-2020-35524
• CVE-2020-36158
• CVE-2020-36330
• CVE-2020-36331
• CVE-2020-36332
• CVE-2020-36386
• CVE-2021-0129
• CVE-2021-3200
• CVE-2021-3348
• CVE-2021-3426
• CVE-2021-3445
• CVE-2021-3481
• CVE-2021-3487
• CVE-2021-3489
• CVE-2021-3564
• CVE-2021-3572
• CVE-2021-3573
• CVE-2021-3580
• CVE-2021-3600
• CVE-2021-3635
• CVE-2021-3659
• CVE-2021-3679
• CVE-2021-3732
• CVE-2021-3778
• CVE-2021-3796
• CVE-2021-3800
• CVE-2021-20194
• CVE-2021-20197
• CVE-2021-20231
• CVE-2021-20232
• CVE-2021-20239
• CVE-2021-20266
• CVE-2021-20284
• CVE-2021-22876
• CVE-2021-22898
• CVE-2021-22925
• CVE-2021-23133
• CVE-2021-23840
• CVE-2021-23841
• CVE-2021-25214
• CVE-2021-27645
• CVE-2021-28091
• CVE-2021-28153
• CVE-2021-28950
• CVE-2021-28971
• CVE-2021-29155
• CVE-2021-29646
• CVE-2021-29650
• CVE-2021-31440
• CVE-2021-31535
• CVE-2021-31829
• CVE-2021-31916
• CVE-2021-33200
• CVE-2021-33560
• CVE-2021-33574
• CVE-2021-35942
• CVE-2021-36084
• CVE-2021-36085
• CVE-2021-36086
• CVE-2021-36087

References

• https://access.redhat.com/containers
• https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/8/html/8.5_release_notes/
• https://access.redhat.com/support/offerings/techpreview/