RHBA-2024:1320 - Bug Fix Advisory

标题

This erratum covers updates to the current JBoss Web Server 5.7 for OpenShift images to consume the JBoss Web Server 5.7.8 release.

描述

Red Hat xPaaS provides images for many of the Red Hat Middleware products that are available for use within the OpenShift Container Platform cloud computing Platform-as-a-Service (PaaS) for on-premise or private cloud deployments.

The current JBoss Web Server 5.7 for OpenShift images have been updated to consume the JBoss Web Server 5.7.8 release.

解决方案

To update to the latest JBoss Web Server 5.7.8 for OpenShift image on UBI8, perform the following steps to pull in the content:

1. On your master host(s), ensure that you are logged in to the command line interface as a cluster administrator or user who has project administrator access to the global "openshift" project:

$ oc login -u system:admin

2. Run the following commands to import the templates:

$ for resource in jws57-openjdk11-tomcat9-ubi8-basic-s2i.json jws57-openjdk11-tomcat9-ubi8-https-s2i.json jws57-openjdk11-tomcat9-ubi8-image-stream.json jws57-openjdk17-tomcat9-ubi8-basic-s2i.json jws57-openjdk17-tomcat9-ubi8-https-s2i.json jws57-openjdk17-tomcat9-ubi8-image-stream.json jws57-openjdk8-tomcat9-ubi8-basic-s2i.json jws57-openjdk8-tomcat9-ubi8-https-s2i.json jws57-openjdk8-tomcat9-ubi8-image-stream.json do oc replace -n openshift --force -f https://raw.githubusercontent.com/jboss-container-images/jboss-webserver-5-openshift-image/jws57el8-v5.7.8/templates/${resource} done

3. Depending on the OpenJDK version, run one of the following commands to update the core JBoss Web Server 5.7 tomcat 9 OpenShift image stream in the "openshift" project:

• For OpenJDK 8:

To update the core JBoss Web Server 5.7 tomcat 9 with OpenJDK 8 OpenShift image,run the following command:

$ oc -n openshift import-image jboss-webserver57-openjdk8-tomcat9-openshift-ubi8:5.7.8

• For OpenJDK 11:

To update the core JBoss Web Server 5.7 tomcat 9 with OpenJDK 11 OpenShift image, run the following command:

$ oc -n openshift import-image jboss-webserver57-openjdk11-tomcat9-openshift-ubi8:5.7.8

• For OpenJDK 17:

To update the core JBoss Web Server 5.7 tomcat 9 with OpenJDK 17 OpenShift image, run the following command:

$ oc -n openshift import-image jboss-webserver57-openjdk17-tomcat9-openshift-ubi8:5.7.8

受影响的产品

• Red Hat OpenShift Container Platform 4.12 for RHEL 8 x86_64
• Red Hat OpenShift Container Platform 4.11 for RHEL 8 x86_64

修复

• CLOUD-4220 - [JWS57] Update JWS 5.7 Openshift Images with Service Pack 8
• JWS-3207 - JWS UBI 8 for OpenJDK 17 - General Availability
• JWS-2062 - Remove tomcat-8-valves-1.0.3.Final-redhat-1.jar from JWS 5 container images
• JWS-2997 - JWS 5.7 image "Permission denied" error in the start up

CVE

• CVE-2007-4559
• CVE-2021-3468
• CVE-2021-35937
• CVE-2021-35938
• CVE-2021-35939
• CVE-2022-44638
• CVE-2023-0800
• CVE-2023-0801
• CVE-2023-0802
• CVE-2023-0803
• CVE-2023-0804
• CVE-2023-3138
• CVE-2023-3446
• CVE-2023-3817
• CVE-2023-4641
• CVE-2023-5678
• CVE-2023-6135
• CVE-2023-7104
• CVE-2023-22745
• CVE-2023-27043
• CVE-2023-32324
• CVE-2023-34241
• CVE-2023-38469
• CVE-2023-38470
• CVE-2023-38471
• CVE-2023-38472
• CVE-2023-38473
• CVE-2023-39615
• CVE-2023-43804
• CVE-2023-45803
• CVE-2023-48795
• CVE-2024-0553
• CVE-2024-20918
• CVE-2024-20919
• CVE-2024-20921
• CVE-2024-20932
• CVE-2024-20945
• CVE-2024-20952

参考

(none)