- Issued:
- 2024-05-13
- Updated:
- 2024-05-13
RHBA-2024:2824 - Bug Fix Advisory
Synopsis
ACS 4.3 enhancement update
Type/Severity
Bug Fix Advisory
Topic
Updated images are now available for Red Hat Advanced Cluster Security. The updated image includes changes, bug fixes, and updates to patch vulnerabilities.
Description
This release of RHACS 4.3.7 provides the following bug fixes:
- This release fixes an issue where the Central pod failed with a `SQLSTATE 23503` error after updating RHACS to release 4.3.6. This resulted in the collector pods showing the `CrashLoopBackoff` state because the collector probe was unavailable.
- This release updates the Scanner baseline vulnerability data to address changes made to the Red Hat security data feeds that were not compatible with earlier data from Scanner's scheduled feed processing. This fixes various issues where vulnerabilities were detected for images containing packages that were incorrectly indicated as affected by a vulnerability.
- This release fixes a crash and rendering error in the network graph that occurs when Central is running an RHACS release of 4.3.6 or earlier and Sensor is running an RHACS release of 4.4.0 or later.
This release provides the following change:
- The default telemetry endpoint is now set to a Red Hat proxy.
This releases updates the following items to patch vulnerabilities:
- Go has been updated to release 1.20.12.
- The `golang.org/x/net` module has been updated from release v0.22.0 to v0.23.0.
Solution
If you are using an earlier version of RHACS 4.3, you are advised to upgrade to patch release 4.3.7.
Affected Products
- Red Hat Advanced Cluster Security for Kubernetes 4 x86_64
- Red Hat Advanced Cluster Security for Kubernetes for IBM Z and LinuxONE 4 s390x
- Red Hat Advanced Cluster Security for Kubernetes for IBM Power, little endian 4 ppc64le
Fixes
CVEs
ppc64le
advanced-cluster-security/rhacs-central-db-rhel8@sha256:163927b711ee8e4f5f05224bff8f4c7982cc3049ef028b39c1e1b23c0dcddcfc |
advanced-cluster-security/rhacs-collector-rhel8@sha256:6a279f3b30d082209ab6639788dc1fb6536215e7e3ca0b5437c43689ba51fc53 |
advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:c525adb120c89500875bc71eaa5838800d33a05c2709fe195e245298f4cfa45e |
advanced-cluster-security/rhacs-main-rhel8@sha256:f02c2fa6090824814a9a359c8f0d42fe2a6040b85dad97f4fb7c8619095208e9 |
advanced-cluster-security/rhacs-operator-bundle@sha256:31fe01680616d34b4ec86a6b5630f4c8cd988d0ec2dc3a4ab957a215d0f56194 |
advanced-cluster-security/rhacs-rhel8-operator@sha256:92a90fd71e56373b32330a6f44dbda3dbf6e5550d307fdeecd0f0d32240ab23d |
advanced-cluster-security/rhacs-roxctl-rhel8@sha256:07ca1ddd4add7196efa6998a60a7dc589e6d2179b71750a9774e855e4f98c671 |
advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:96851571b65d54df710d19fb7d48dc4f815738b6532f1a32ef5d4222a3e86318 |
advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:189e4e24ce020d60e5589a1833ca20ecd7bdd539a02e28ae5cc3c89b39032939 |
advanced-cluster-security/rhacs-scanner-rhel8@sha256:99456fd97f6dcb4cbb3b39804299ff0bd48d9c792c7b1a8561abd4910448420f |
advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:f5a6de8fbb85b789b99f1446c1c08e4d43ed55035cfb1cbe2e6160dcc563d4f1 |
s390x
advanced-cluster-security/rhacs-central-db-rhel8@sha256:5b01e7b31eab3eddbfe05c26280624d5245c424adb057741e9d1fb5cfa87a6b8 |
advanced-cluster-security/rhacs-collector-rhel8@sha256:19ba17b56002709c22f4fd906bdd01c3d002c5e35179057c68bceb85d5de3a12 |
advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:11c1531b6b09ecbcf4165361ee6a2d8d2edd2f0ed88e9c86e8048ca32399eae5 |
advanced-cluster-security/rhacs-main-rhel8@sha256:71fd42660a387d2b5323a1ee887f6babebbfcc6d47c855855b4de0a056228329 |
advanced-cluster-security/rhacs-operator-bundle@sha256:1fa48f0feae7e690467ec4600906a3e560249ba074d6206f4e82bd7f94f74479 |
advanced-cluster-security/rhacs-rhel8-operator@sha256:b7fc5bf787a3982a2cc0cfdece9289831840f4be09e4890008c8fb7980d163c0 |
advanced-cluster-security/rhacs-roxctl-rhel8@sha256:a9c02bba16358bf621d4dc66eaab102afa868bfdaa645e1ae302a0a71242407c |
advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:ca875c0e9e38cfe46abadb69d1ff7ae9f448bdab522ada36bb3ac2a95ca92e49 |
advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3ae9c51241993954c15a43b9c4c14b9ca9dca6b35b886a00e5b7f4dc423064b0 |
advanced-cluster-security/rhacs-scanner-rhel8@sha256:5429bb6de803ad5fb009a55929b5ca6fd79d64c6b9d6243a24917bf95321fa8c |
advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:bc689cac9b5ed8ea604b05525cc6cc1e391186951b5efdad3864fe4192b4b967 |
x86_64
advanced-cluster-security/rhacs-central-db-rhel8@sha256:2b75f72d15071926fca7219050d0dd4e983c4371db29c55be3ec38469eaa6f34 |
advanced-cluster-security/rhacs-collector-rhel8@sha256:1d63b92b46e436ab9df6a0d6c069e8c6f71dc0b2bb0632bb53eeee9e458425f1 |
advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:e21059088b6aa2010888a8b5ad77ef055b13f5143fabfc3e8902a00500d76559 |
advanced-cluster-security/rhacs-main-rhel8@sha256:8dd33d61be793c3e126fb1a0a09d71cccb33ed9c14dc5b1683d076dde770fc9a |
advanced-cluster-security/rhacs-operator-bundle@sha256:1e8115bdc0ed2d01d7576524e9796606244963a1447eae55872674c0113fb9c4 |
advanced-cluster-security/rhacs-rhel8-operator@sha256:c4f395d641e56f61698558d3ba7a868fb71efd5a8b999f67f2700e6cb0796604 |
advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d98a12b13f08c6a5c8a344ca082cd1296cf7d6d846f1985c4315274d4985920b |
advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:e476b5150b7bf4d33728182ef1358ffe120f9284bb0286272cccc04e474eabd9 |
advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:f0e60a218e13f69b0c4f6038e713d4b685dffc25dd70003b148a016a6365b0b3 |
advanced-cluster-security/rhacs-scanner-rhel8@sha256:4e54cc5ae8a7c1b35425752702131275fde7b09e411687cce2bd903bd45f4ced |
advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:c93ae61c2158d9b28f0e8229e3336124a8e73607422b5f103c0b4a5cd3d444d5 |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.