Red Hat Product Errata RHBA-2024:4695 - Bug Fix Advisory
Issued:
2024-07-22
Updated:
2024-07-22

RHBA-2024:4695 - Bug Fix Advisory

Synopsis

updated RHEL-8 based Middleware Containers container images

Type/Severity

Bug Fix Advisory

Topic

Updated RHEL-8 based Middleware Containers container images are now available

Description

The RHEL-8 based Middleware Containers container images have been updated to address the following security advisory: RHSA-2024:4567 (see References)

Users of RHEL-8 based Middleware Containers container images are advised to upgrade to these updated images, which contain backported patches to correct these security issues, fix these bugs and add these enhancements. Users of these images are also encouraged to rebuild all container images that depend on these images.

You can find images updated by this advisory in Red Hat Container Catalog (see References).

Solution

The RHEL-8 based Middleware Containers container images provided by this update can be downloaded from the Red Hat Container Registry at registry.access.redhat.com. Installation instructions for your platform are available at Red Hat Container Catalog (see References).

Dockerfiles and scripts should be amended either to refer to this new image specifically, or to the latest image generally.

Affected Products

  • Red Hat OpenShift Container Platform 4.12 for RHEL 8 x86_64
  • Red Hat OpenShift Container Platform 4.11 for RHEL 8 x86_64
  • Red Hat OpenShift Container Platform 4.10 for RHEL 8 x86_64

Fixes

  • BZ - 2297961 - CVE-2024-21131 OpenJDK: potential UTF8 size overflow (8314794)
  • BZ - 2297962 - CVE-2024-21138 OpenJDK: Excessive symbol length can lead to infinite loop (8319859)
  • BZ - 2297963 - CVE-2024-21140 OpenJDK: Range Check Elimination (RCE) pre-loop limit overflow (8320548)
  • BZ - 2297964 - CVE-2024-21144 OpenJDK: Pack200 increase loading time due to improper header validation (8322106)
  • BZ - 2297976 - CVE-2024-21145 OpenJDK: Out-of-bounds access in 2D image handling (8324559)
  • BZ - 2297977 - CVE-2024-21147 OpenJDK: RangeCheckElimination array index overflow (8323231)

ppc64le

rhpam-7/rhpam-kogito-builder-rhel8@sha256:84bb60033682b5b1d538e0cfac40dc25013f817d149342916dc0e3c7ae484b46
rhpam-7/rhpam-kogito-runtime-jvm-rhel8@sha256:2d7a64487975ff17fac79d7bc7256181ca2bbab9624b8b2fd2dd33a0512c711c

x86_64

rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:9bab6704ec324cb1b9e1c23ebf808c972d34f9fd14bd24122e7d534ef13f0c17
rhpam-7/rhpam-businesscentral-rhel8@sha256:e3aed89af4e35c1731a95b23dfbc573537b224d204ab8758dfdb6b21cfcd8e63
rhpam-7/rhpam-controller-rhel8@sha256:027aec9966dca4faf98491a7b407b8337b9a93089b3bdcd8360a69919c248a27
rhpam-7/rhpam-dashbuilder-rhel8@sha256:388c77421a8b751b817c2815edcf9f364f1a2699c9fb2819378a2535ab80438c
rhpam-7/rhpam-kieserver-rhel8@sha256:6230cebf150a071acaad213efd48068c833d09a6bcfbdf0d051fa7ad993aaec6
rhpam-7/rhpam-kogito-builder-rhel8@sha256:e2d5e3f70bc803f5b041fc83d4933a07de3c289ff5e7fbb5a1d9bc195d5b2eec
rhpam-7/rhpam-kogito-runtime-jvm-rhel8@sha256:91cd386dbbb1e4d3bc417d84da46ecb3dc106b345aacf54d7f3971aaae338787
rhpam-7/rhpam-operator-bundle@sha256:6f2f6bf43199103f17e45d04da741e4213eba015d59e975ba60087a316136e4d
rhpam-7/rhpam-process-migration-rhel8@sha256:3050fd2fd9fba6479c7dcd49ccddab110b674135fba48c906ddaad9bc659c844
rhpam-7/rhpam-smartrouter-rhel8@sha256:95eb0bc49548c198905187aa22cc6cb92d697ddedfbeb35ae6993e4b8ab77c47

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.