Red Hat Product Errata RHBA-2023:4207 - Bug Fix Advisory
Issued:
2023-07-19
Updated:
2023-07-19

RHBA-2023:4207 - Bug Fix Advisory

Synopsis

updated Red Hat Enterprise Linux 9 container images

Type/Severity

Bug Fix Advisory

Topic

Updated Red Hat Enterprise Linux 9 container images are now available

Description

The Red Hat Enterprise Linux 9 container images have been updated to address the following security advisory: RHSA-2023:4099 (see References)

Users of Red Hat Enterprise Linux 9 container images are advised to upgrade to these updated images, which contain backported patches to correct these security issues, fix these bugs and add these enhancements. Users of these images are also encouraged to rebuild all container images that depend on these images.

You can find images updated by this advisory in Red Hat Container Catalog (see References).

Solution

The Red Hat Enterprise Linux 9 container images provided by this update can be downloaded from the Red Hat Container Registry at registry.access.redhat.com. Installation instructions for your platform are available at Red Hat Container Catalog (see References).

Dockerfiles and scripts should be amended either to refer to this new image specifically, or to the latest image generally.

Affected Products

  • Red Hat Enterprise Linux for x86_64 9 x86_64
  • Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.6 x86_64
  • Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.4 x86_64
  • Red Hat Enterprise Linux Server - AUS 9.6 x86_64
  • Red Hat Enterprise Linux Server - AUS 9.4 x86_64
  • Red Hat Enterprise Linux for IBM z Systems 9 s390x
  • Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.6 s390x
  • Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.4 s390x
  • Red Hat Enterprise Linux for Power, little endian 9 ppc64le
  • Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.6 ppc64le
  • Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.4 ppc64le
  • Red Hat Enterprise Linux for ARM 64 9 aarch64
  • Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.6 aarch64
  • Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.4 aarch64
  • Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.6 ppc64le
  • Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.4 ppc64le
  • Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.6 x86_64
  • Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.4 x86_64
  • Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.6 aarch64
  • Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.4 aarch64
  • Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.6 s390x
  • Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.4 s390x

Fixes

  • BZ - 2216227 - CVE-2023-2828 bind: named's configured cache size limit can be significantly exceeded

aarch64

rhel9/httpd-24@sha256:80de9f1adbe3731620f66b8b8e9f8f4d26b83cd87ade5756103399c4300b4e45
ubi9/httpd-24@sha256:80de9f1adbe3731620f66b8b8e9f8f4d26b83cd87ade5756103399c4300b4e45
rhel9/mariadb-105@sha256:3727ecb41c8022d5c6c01a83e83deedb568342d1a943a1732c5e52bdc46349a8
rhel9/mysql-80@sha256:dc59de205624a438dec66b0877ef41bba08f2aee1a83d51daf1ddda1ab2c5d5b
ubi9/nginx-120@sha256:a3a15fa1f3b04237dd8cc070bd724bbee814ea198aae5454aa53ed061e9953a5
rhel9/nginx-120@sha256:a3a15fa1f3b04237dd8cc070bd724bbee814ea198aae5454aa53ed061e9953a5
ubi9/nginx-122@sha256:3e9c744f00d21c637b3aa4d97c7cb861d953245c3b9f5829ee0db871bff4c0ef
rhel9/nginx-122@sha256:3e9c744f00d21c637b3aa4d97c7cb861d953245c3b9f5829ee0db871bff4c0ef
rhel9/postgresql-13@sha256:3f42b0fde5a8f0d9219f897aabf121cf6cd7d2590379770206db1b21ae088252
rhel9/postgresql-15@sha256:27fda50396809f4043b73ad2d9693b79ce20e3eb4437747798d3173fc9838a81
rhel9/varnish-6@sha256:53b73d797ae476ae86ddec46e559915023ed2e48b3f4b83649e157598dc657f9

ppc64le

rhel9/httpd-24@sha256:18f4da5bf723bd2db5d18a35eddaa4586c95eabcf914a4f638526b0a61d6d074
ubi9/httpd-24@sha256:18f4da5bf723bd2db5d18a35eddaa4586c95eabcf914a4f638526b0a61d6d074
rhel9/mariadb-105@sha256:fcc2b8a724c4d71feb5538ecbba63807f2cb5689f17a7bdb821ca7f8cde315eb
rhel9/mysql-80@sha256:48270db11a751b93d538c15533647bf55b944cf8dd362a92fdae2b05cd33acbf
ubi9/nginx-120@sha256:655764d73963bf95223755ad5df4d9ee428c90928e5ba3a9742ec79be90bb16e
rhel9/nginx-120@sha256:655764d73963bf95223755ad5df4d9ee428c90928e5ba3a9742ec79be90bb16e
ubi9/nginx-122@sha256:faea00d639da005fea84d45de97b8c05643d67e5c014377dcc9d23f8ffc5fd60
rhel9/nginx-122@sha256:faea00d639da005fea84d45de97b8c05643d67e5c014377dcc9d23f8ffc5fd60
rhel9/postgresql-13@sha256:e1b30ffbdee3438d6585fdb0a76ce8f11e04a08101930efba75a6cf3c70df60b
rhel9/postgresql-15@sha256:95f1feae5d505e413a10e4df2fa1ed48d26d52f343307ee738c0f8048399405f
rhel9/varnish-6@sha256:1094fbb47160020713cf27bf9ef4a8f84f39644567ce05a747287ee7fb39e597

s390x

rhel9/httpd-24@sha256:8dcee976b4755e984609f5c2c2f10c8c8d97915e719cca1b5389a79a9731ce31
ubi9/httpd-24@sha256:8dcee976b4755e984609f5c2c2f10c8c8d97915e719cca1b5389a79a9731ce31
rhel9/mariadb-105@sha256:babb80760708d8d7b3b7bbff994a9af2d9ae3f3a264f3e4e44525bc34cf9263f
rhel9/mysql-80@sha256:51c29e3524dabca0b7f8159a03d977b9d4f8cf1b961954523d45c5bc29e8dc8d
ubi9/nginx-120@sha256:4fe52a063c25241c52a951ba1acdc8d181dd4051bb2dda203349cf0e4c6e1184
rhel9/nginx-120@sha256:4fe52a063c25241c52a951ba1acdc8d181dd4051bb2dda203349cf0e4c6e1184
ubi9/nginx-122@sha256:ee7dd1e53693bdd263c84991cad0eac5cee73d99efac326734862a1a31329439
rhel9/nginx-122@sha256:ee7dd1e53693bdd263c84991cad0eac5cee73d99efac326734862a1a31329439
rhel9/postgresql-13@sha256:09a78c4ef6d8191b2b61533383f4f1aa343a65e2beb0efa5e9893b4b7fa5ac98
rhel9/postgresql-15@sha256:f051e48c9b860b106176e606708b7c751993902922d9d2649e3b19df6f0b008f
rhel9/varnish-6@sha256:18f9f2d2cf8518d1851532c203035cf9576858d9d8fb270d75e69c644d6398c7

x86_64

rhel9/httpd-24@sha256:e66f227202825cebc3f1c13f7c8ca64cd7b23f07c83aaa436a199442367dc1a9
ubi9/httpd-24@sha256:e66f227202825cebc3f1c13f7c8ca64cd7b23f07c83aaa436a199442367dc1a9
rhel9/mariadb-105@sha256:a6479dfc80bfb17506ea93c3e0bd3c3a7526119c783c90132df679597abfcf09
rhel9/mysql-80@sha256:bdfba46146b41c19b9178e4f32f8bc7cabdcb883eb5875e2ddfcfc28e5a5897c
ubi9/nginx-120@sha256:7468ceee8ae8bb359399d83b95ef02b7f4ee03ec475d3529d8694ebac773e447
rhel9/nginx-120@sha256:7468ceee8ae8bb359399d83b95ef02b7f4ee03ec475d3529d8694ebac773e447
ubi9/nginx-122@sha256:2152b6f5cfd8784b0e75bbcc11cc06bd32619e8e193d6fc1004c8907ea43c0d6
rhel9/nginx-122@sha256:2152b6f5cfd8784b0e75bbcc11cc06bd32619e8e193d6fc1004c8907ea43c0d6
rhel9/postgresql-13@sha256:ea8089af9e2c45bbc2736202b77533c49b59ac82681b2952c283484fc63f9ff2
rhel9/postgresql-15@sha256:dcc81a22d215a7fc4deee01b07a1c4dd036f817ab52f8479b3bbfb4987bb8e7c
rhel9/varnish-6@sha256:d3af702cf463add085287c6177801daf367dad43e098659e93416daca3616b73

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.