Red Hat Product Errata RHBA-2024:1699 - Bug Fix Advisory
Issued:
2024-04-08
Updated:
2024-04-08

RHBA-2024:1699 - Bug Fix Advisory

Synopsis

updated rhel8/support-tools container image

Type/Severity

Bug Fix Advisory

Topic

Updated rhel8/support-tools container image is now available for Red Hat Enterprise Linux 8.

Description

The rhel8/support-tools container image has been updated for Red Hat Enterprise Linux 8 to address the following security advisory: RHSA-2024:1607 (see References)

Users of rhel8/support-tools container images are advised to upgrade to these updated images, which contain backported patches to correct these security issues, fix these bugs and add these enhancements. Users of these images are also encouraged to rebuild all container images that depend on these images.

You can find images updated by this advisory in Red Hat Container Catalog (see References).

Solution

The Red Hat Enterprise Linux 8 container image provided by this update can be downloaded from the Red Hat Container Registry at registry.access.redhat.com. Installation instructions for your platform are available at Red Hat Container Catalog (see References).

Dockerfiles and scripts should be amended either to refer to this new image specifically, or to the latest image generally.

Affected Products

  • Red Hat Enterprise Linux for x86_64 8 x86_64
  • Red Hat Enterprise Linux for IBM z Systems 8 s390x
  • Red Hat Enterprise Linux for Power, little endian 8 ppc64le
  • Red Hat Enterprise Linux for ARM 64 8 aarch64

Fixes

  • BZ - 2133452 - CVE-2022-38096 kernel: vmwgfx: NULL pointer dereference in vmw_cmd_dx_define_query
  • BZ - 2252731 - CVE-2023-6931 kernel: Out of boundary write in perf_read_group() as result of overflow a perf_event's read_size
  • BZ - 2255498 - CVE-2023-6546 kernel: GSM multiplexing race condition leads to privilege escalation
  • BZ - 2258518 - CVE-2024-0565 kernel: CIFS Filesystem Decryption Improper Input Validation Remote Code Execution Vulnerability in function receive_encrypted_standard of client
  • BZ - 2259866 - CVE-2023-51042 kernel: use-after-free in amdgpu_cs_wait_all_fences in drivers/gpu/drm/amd/amdgpu/amdgpu_cs.c
  • BZ - 2261976 - CVE-2021-33631 kernel: ext4: kernel bug in ext4_write_inline_data_end()
  • BZ - 2262126 - CVE-2024-1086 kernel: nf_tables: use-after-free vulnerability in the nft_verdict_init() function

CVEs

(none)

aarch64

rhel8/support-tools@sha256:af734234ccc68c32ec55500b40a055192d38c7e2b621ca8a3fa7622131e4c168

ppc64le

rhel8/support-tools@sha256:fb0852b70a667bf38b8aaf74f4d3b053746301b5cf21c3bfa7b513b60047ce7f

s390x

rhel8/support-tools@sha256:7506455b49e12308323df0a0baf3d3afa2bd5935ff4efe0dc68606d3ea28a51d

x86_64

rhel8/support-tools@sha256:4f71db09d0f8448eb9d1a6fdd6cd876e6588804564cb3e4db5d7fc8c9ce5c349

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.