- Issued:
- 2022-04-07
- Updated:
- 2022-04-07
RHBA-2022:1266 - Bug Fix Advisory
Synopsis
Update Red Hat Data Grid 8.3.0 OpenShift Images
Type/Severity
Bug Fix Advisory
Topic
Release errata for Red Hat Data Grid 8.3.0. This release updates Data
Grid 8.3.0 images for Red Hat OpenShift.
Description
Red Hat Data Grid 8.3.0 container images have been updated to address the following security advisory: RHSA-2022:1065 (see References)
Users of Data Grid container images are advised to upgrade to these updated images, which contain backported patches to correct these security issues, fix these bugs and add these enhancements. Users of these images are also encouraged to rebuild all container images that depend on these images.
You can find images updated by this advisory in Red Hat Container Catalog (see References).
Solution
Install Data Grid Operator into OpenShift Container Platform by creating subscriptions from the Operator Hub.
See the following references for more information:
Data Grid 8 Supported Configurations
Data Grid Operator 8.3 Release Notes
Data Grid 8.3 Release Notes
Affected Products
- Red Hat OpenShift Container Platform 4.9 for RHEL 8 x86_64
- Red Hat OpenShift Container Platform 4.8 for RHEL 8 x86_64
- Red Hat OpenShift Container Platform 4.7 for RHEL 8 x86_64
- Red Hat OpenShift Container Platform 4.6 for RHEL 8 x86_64
- Red Hat OpenShift Container Platform 4.5 for RHEL 8 x86_64
- Red Hat OpenShift Container Platform 4.4 for RHEL 8 x86_64
- Red Hat OpenShift Container Platform 4.3 for RHEL 8 x86_64
- Red Hat OpenShift Container Platform for Power 4.9 for RHEL 8 ppc64le
- Red Hat OpenShift Container Platform for Power 4.8 for RHEL 8 ppc64le
- Red Hat OpenShift Container Platform for Power 4.7 for RHEL 8 ppc64le
- Red Hat OpenShift Container Platform for Power 4.6 for RHEL 8 ppc64le
- Red Hat OpenShift Container Platform for Power 4.5 for RHEL 8 ppc64le
- Red Hat OpenShift Container Platform for Power 4.4 for RHEL 8 ppc64le
- Red Hat OpenShift Container Platform for Power 4.3 for RHEL 8 ppc64le
- Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.9 for RHEL 8 s390x
- Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.8 for RHEL 8 s390x
- Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.7 for RHEL 8 s390x
- Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.6 for RHEL 8 s390x
- Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.5 for RHEL 8 s390x
- Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.4 for RHEL 8 s390x
- Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.3 for RHEL 8 s390x
Fixes
- BZ - 2062202 - CVE-2022-0778 openssl: Infinite loop in BN_mod_sqrt() reachable when parsing certificates
CVEs
- CVE-2021-3999
- CVE-2021-23177
- CVE-2021-31566
- CVE-2021-45960
- CVE-2021-46143
- CVE-2022-0261
- CVE-2022-0318
- CVE-2022-0359
- CVE-2022-0361
- CVE-2022-0392
- CVE-2022-0413
- CVE-2022-0778
- CVE-2022-22822
- CVE-2022-22823
- CVE-2022-22824
- CVE-2022-22825
- CVE-2022-22826
- CVE-2022-22827
- CVE-2022-23218
- CVE-2022-23219
- CVE-2022-23308
- CVE-2022-23852
- CVE-2022-25235
- CVE-2022-25236
- CVE-2022-25315
References
- https://access.redhat.com/errata/RHSA-2022:1065
- https://access.redhat.com/containers
- https://access.redhat.com/articles/4933551
- https://access.redhat.com/documentation/en-us/red_hat_data_grid/8.3/html-single/data_grid_operator_8.3_release_notes/
- https://access.redhat.com/documentation/en-us/red_hat_data_grid/8.3/html-single/red_hat_data_grid_8.3_release_notes/
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.