Red Hat Product Errata RHBA-2023:5836 - Bug Fix Advisory
Issued:
2023-10-18
Updated:
2023-10-18

RHBA-2023:5836 - Bug Fix Advisory

Synopsis

updated Red Hat Enterprise Linux 9 container images

Type/Severity

Bug Fix Advisory

Topic

Updated Red Hat Enterprise Linux 9 container images are now available

Description

The Red Hat Enterprise Linux 9 container images have been updated to address the following security advisory: RHSA-2023:5711 (see References)

Users of Red Hat Enterprise Linux 9 container images are advised to upgrade to these updated images, which contain backported patches to correct these security issues, fix these bugs and add these enhancements. Users of these images are also encouraged to rebuild all container images that depend on these images.

You can find images updated by this advisory in Red Hat Container Catalog (see References).

Solution

The Red Hat Enterprise Linux 9 container images provided by this update can be downloaded from the Red Hat Container Registry at registry.access.redhat.com. Installation instructions for your platform are available at Red Hat Container Catalog (see References).

Dockerfiles and scripts should be amended either to refer to this new image specifically, or to the latest image generally.

Affected Products

  • Red Hat Enterprise Linux for x86_64 9 x86_64
  • Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.6 x86_64
  • Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.4 x86_64
  • Red Hat Enterprise Linux Server - AUS 9.6 x86_64
  • Red Hat Enterprise Linux Server - AUS 9.4 x86_64
  • Red Hat Enterprise Linux for IBM z Systems 9 s390x
  • Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.6 s390x
  • Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.4 s390x
  • Red Hat Enterprise Linux for Power, little endian 9 ppc64le
  • Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.6 ppc64le
  • Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.4 ppc64le
  • Red Hat Enterprise Linux for ARM 64 9 aarch64
  • Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.6 aarch64
  • Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.4 aarch64
  • Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.6 ppc64le
  • Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.4 ppc64le
  • Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.6 x86_64
  • Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.4 x86_64
  • Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.6 aarch64
  • Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.4 aarch64
  • Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.6 s390x
  • Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.4 s390x

Fixes

  • BZ - 2242803 - CVE-2023-44487 HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)

aarch64

ubi9/nginx-120@sha256:a8fc42f0f98b2b0567fbd596d68f77ec1774a1e02b1e0296bbc83cd7379ef1a3
rhel9/nginx-120@sha256:a8fc42f0f98b2b0567fbd596d68f77ec1774a1e02b1e0296bbc83cd7379ef1a3
rhel9/php-80@sha256:260268ef3f0defeccf38136ac7a83c41a9df25d8ba842ba6eb24b44d508e0c74
ubi9/php-80@sha256:260268ef3f0defeccf38136ac7a83c41a9df25d8ba842ba6eb24b44d508e0c74
rhel9/php-81@sha256:f3a6c298ee384c2581d6e1939d86eeb78887f9eeee58f8502c2e40eec52447fb
ubi9/php-81@sha256:f3a6c298ee384c2581d6e1939d86eeb78887f9eeee58f8502c2e40eec52447fb

ppc64le

ubi9/nginx-120@sha256:1dac13e737df119f049e904d49ae914d1ad8ebe22daf4cf4637d1b2f4f2f56d9
rhel9/nginx-120@sha256:1dac13e737df119f049e904d49ae914d1ad8ebe22daf4cf4637d1b2f4f2f56d9
rhel9/php-80@sha256:3910d182905ebf50d0ad3567c5022aeddb933fef134aa72ee57da97cdb9bb210
ubi9/php-80@sha256:3910d182905ebf50d0ad3567c5022aeddb933fef134aa72ee57da97cdb9bb210
rhel9/php-81@sha256:cbe10c067dcaa7b4cd65a53725fa9752d1194503e9b4581eac9d54fa4780cbee
ubi9/php-81@sha256:cbe10c067dcaa7b4cd65a53725fa9752d1194503e9b4581eac9d54fa4780cbee

s390x

ubi9/nginx-120@sha256:1a2e5f52791b287ddc282aae2d15cb73f4eed2902abe9336726459cd82df4d94
rhel9/nginx-120@sha256:1a2e5f52791b287ddc282aae2d15cb73f4eed2902abe9336726459cd82df4d94
rhel9/php-80@sha256:624bcedfbb9e2d465e9fdd6ccb61732496085c9d6e16e028105910d9e56c4bae
ubi9/php-80@sha256:624bcedfbb9e2d465e9fdd6ccb61732496085c9d6e16e028105910d9e56c4bae
rhel9/php-81@sha256:b4e65ef24726a3d642c72cb060a49c3485d4922106efacc6e1af977d2aee506e
ubi9/php-81@sha256:b4e65ef24726a3d642c72cb060a49c3485d4922106efacc6e1af977d2aee506e

x86_64

ubi9/nginx-120@sha256:5b2328a1c1426741f0b0657fbed7dd696cb5385397a55a9e820e4d3c290cc3ba
rhel9/nginx-120@sha256:5b2328a1c1426741f0b0657fbed7dd696cb5385397a55a9e820e4d3c290cc3ba
rhel9/php-80@sha256:b7cddbdaf27cccaabda493ee819bf921e11e915c84515382527504552baf49cd
ubi9/php-80@sha256:b7cddbdaf27cccaabda493ee819bf921e11e915c84515382527504552baf49cd
rhel9/php-81@sha256:cd84177d3a19cc616236bf72eab32472d5f64f235f9c30fa0c40f4b5a605d4a1
ubi9/php-81@sha256:cd84177d3a19cc616236bf72eab32472d5f64f235f9c30fa0c40f4b5a605d4a1

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.