RHBA-2023:0929 - Bug Fix Advisory

Topic

Submariner 0.12.3 packages that fix bugs with updated container images.

Description

Submariner enables direct networking between pods and services on different
Kubernetes clusters that are either on-premises or in the cloud.

For more information about Submariner, see the following documentation in
the Red Hat Advanced Cluster Management for Kubernetes documentation:
https://access.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.5/html/add-ons/add-ons-overview#submariner and the Submariner open source community website at:
https://submariner.io/.

This advisory contains bug fixes and enhancements to the Submariner
container images.

Bug addressed:

• libksba: integer overflow to code execution (BZ# 2161571)

Solution

The Submariner container image provided by this update can be downloaded from the Red Hat Container Registry at registry.access.redhat.com. Installation instructions for your platform are available at Red Hat Container Catalog (see References).

Dockerfiles and scripts should be amended either to refer to this new image specifically, or to the latest image generally.

Affected Products

• Red Hat Advanced Cluster Management for Kubernetes 2 for RHEL 8 x86_64

Fixes

• BZ - 2161571 - CVE-2022-47629 libksba: integer overflow to code execution

CVEs

(none)

References

(none)