Red Hat Product Errata RHBA-2024:5573 - Bug Fix Advisory
Issued:
2024-08-19
Updated:
2024-08-19

RHBA-2024:5573 - Bug Fix Advisory

Synopsis

updated Red Hat Enterprise Linux 9 container images

Type/Severity

Bug Fix Advisory

Topic

Updated Red Hat Enterprise Linux 9 container images are now available

Description

The Red Hat Enterprise Linux 9 container images have been updated to address the following security advisory: RHSA-2024:5138 (see References)

Users of Red Hat Enterprise Linux 9 container images are advised to upgrade to these updated images, which contain backported patches to correct these security issues, fix these bugs and add these enhancements. Users of these images are also encouraged to rebuild all container images that depend on these images.

You can find images updated by this advisory in Red Hat Container Catalog (see References).

Solution

The Red Hat Enterprise Linux 9 container images provided by this update can be downloaded from the Red Hat Container Registry at registry.access.redhat.com. Installation instructions for your platform are available at Red Hat Container Catalog (see References).

Dockerfiles and scripts should be amended either to refer to this new image specifically, or to the latest image generally.

Affected Products

  • Red Hat Enterprise Linux for x86_64 9 x86_64
  • Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.6 x86_64
  • Red Hat Enterprise Linux Server - AUS 9.6 x86_64
  • Red Hat Enterprise Linux for IBM z Systems 9 s390x
  • Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.6 s390x
  • Red Hat Enterprise Linux for Power, little endian 9 ppc64le
  • Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.6 ppc64le
  • Red Hat Enterprise Linux for ARM 64 9 aarch64
  • Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.6 aarch64
  • Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.6 ppc64le
  • Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.6 x86_64
  • Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.6 aarch64
  • Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.6 s390x

Fixes

  • BZ - 2295015 - CVE-2024-38476 httpd: Security issues via?backend applications whose response headers are malicious or exploitable

aarch64

rhel9/httpd-24@sha256:06c6af9690a6a7e8ac05d26ca7ef3b46dbca25b5380d4500e6f5f0e71b99c857
ubi9/httpd-24@sha256:06c6af9690a6a7e8ac05d26ca7ef3b46dbca25b5380d4500e6f5f0e71b99c857
ubi9/perl-532@sha256:67c59fef2111ef09da149071073849c80bcbbf42a44377d7b5b67dc3896d5235
rhel9/perl-532@sha256:67c59fef2111ef09da149071073849c80bcbbf42a44377d7b5b67dc3896d5235
rhel9/php-80@sha256:fcc15b503a66fb36da31cbb4b35b3732f4f717f13896d8f8018168bb82bbd468
ubi9/php-80@sha256:fcc15b503a66fb36da31cbb4b35b3732f4f717f13896d8f8018168bb82bbd468
rhel9/php-81@sha256:4473165b1111b92007ea5649d5367e0ff42ab47e7323064c6f66827a16a3208d
ubi9/php-81@sha256:4473165b1111b92007ea5649d5367e0ff42ab47e7323064c6f66827a16a3208d
rhel9/php-82@sha256:56c6ba5b37fd1e4efe61d3abd43bd341fb38c4648900d47121290605ad76eef1
ubi9/php-82@sha256:56c6ba5b37fd1e4efe61d3abd43bd341fb38c4648900d47121290605ad76eef1
rhel9/python-311@sha256:411b029a3614aab297887d6eb7ba73f33742c99c639e9bd136343cfbfac100ac
ubi9/python-311@sha256:411b029a3614aab297887d6eb7ba73f33742c99c639e9bd136343cfbfac100ac
rhel9/python-312@sha256:2255f66a700d1a58b66fea57408522ccb01dba1336b159ecead463985c2be85a
ubi9/python-312@sha256:2255f66a700d1a58b66fea57408522ccb01dba1336b159ecead463985c2be85a
rhel9/python-39@sha256:e4102adc1432cb41201e3c368fd357c6eefdd6b3c0579cb6dbad81a12d405809
ubi9/python-39@sha256:e4102adc1432cb41201e3c368fd357c6eefdd6b3c0579cb6dbad81a12d405809

ppc64le

rhel9/httpd-24@sha256:62020572e6e4fe6cdba8fe94a2157a6a721e8756e4e725f62abb7a39e6104bf4
ubi9/httpd-24@sha256:62020572e6e4fe6cdba8fe94a2157a6a721e8756e4e725f62abb7a39e6104bf4
ubi9/perl-532@sha256:d0237a75d8c504ee36f7bd0acf33a849d1280bbfec4effa6217420bdbb27d6a8
rhel9/perl-532@sha256:d0237a75d8c504ee36f7bd0acf33a849d1280bbfec4effa6217420bdbb27d6a8
rhel9/php-80@sha256:d5cfdde58cc92cc928b6fdf541e9e3535433746bc5db06571725e846d6dde1f0
ubi9/php-80@sha256:d5cfdde58cc92cc928b6fdf541e9e3535433746bc5db06571725e846d6dde1f0
rhel9/php-81@sha256:5084622b375b011194ae946ee977879fa98fe8232f5d7b36cab264b6f3201ac1
ubi9/php-81@sha256:5084622b375b011194ae946ee977879fa98fe8232f5d7b36cab264b6f3201ac1
rhel9/php-82@sha256:652e37d25155b6627859f023b5904fcfa17771ddf21d9c2daa0dd0ec4b86d888
ubi9/php-82@sha256:652e37d25155b6627859f023b5904fcfa17771ddf21d9c2daa0dd0ec4b86d888
rhel9/python-311@sha256:c1643085f2bdba61fa4c689bee9bfdb9092b37cb9e307be82a7a98c88e675979
ubi9/python-311@sha256:c1643085f2bdba61fa4c689bee9bfdb9092b37cb9e307be82a7a98c88e675979
rhel9/python-312@sha256:31a2373d9dac9fe5ed4a4bf5d0e840e0df1106dc0d9911d1a43875647100fb5c
ubi9/python-312@sha256:31a2373d9dac9fe5ed4a4bf5d0e840e0df1106dc0d9911d1a43875647100fb5c
rhel9/python-39@sha256:04ec72aa7e49ef4317901d656f23bce50dd80963163351395ee38ea2f9439cda
ubi9/python-39@sha256:04ec72aa7e49ef4317901d656f23bce50dd80963163351395ee38ea2f9439cda

s390x

rhel9/httpd-24@sha256:cc2dd31f7090efdb6bbf13bf0e4a608a665b44d060814175b0d47dca27332ebc
ubi9/httpd-24@sha256:cc2dd31f7090efdb6bbf13bf0e4a608a665b44d060814175b0d47dca27332ebc
ubi9/perl-532@sha256:8b1472baaa9c9a77c50bec315d83224d0ea40498dfd25f64fef3bccc98d30912
rhel9/perl-532@sha256:8b1472baaa9c9a77c50bec315d83224d0ea40498dfd25f64fef3bccc98d30912
rhel9/php-80@sha256:1deccf7d4eb09cf4379b708a1cf69be01490995dc52c3e90c99b6b43d2da1fe2
ubi9/php-80@sha256:1deccf7d4eb09cf4379b708a1cf69be01490995dc52c3e90c99b6b43d2da1fe2
rhel9/php-81@sha256:8d8f3f3e12f9a5b304708eb305ab31ab97332200e7ce57a46bc3e1084c149eb5
ubi9/php-81@sha256:8d8f3f3e12f9a5b304708eb305ab31ab97332200e7ce57a46bc3e1084c149eb5
rhel9/php-82@sha256:1193641507803ae08f4dbf56e4f4e45e51b363a04e2c9418b83ddbbd1deac3e7
ubi9/php-82@sha256:1193641507803ae08f4dbf56e4f4e45e51b363a04e2c9418b83ddbbd1deac3e7
rhel9/python-311@sha256:c1ebec4534f20d98b259e078a941c6e00045bc3ef1e87381b26d65219c5f1117
ubi9/python-311@sha256:c1ebec4534f20d98b259e078a941c6e00045bc3ef1e87381b26d65219c5f1117
rhel9/python-312@sha256:344660b2982004507c004ab3d16fac6cab6b1047d95c2b25bfd1677c96b0c639
ubi9/python-312@sha256:344660b2982004507c004ab3d16fac6cab6b1047d95c2b25bfd1677c96b0c639
rhel9/python-39@sha256:2c3eda96a8880e42643ca24320ef1899beaaf7de921cf663b517eb18286e378f
ubi9/python-39@sha256:2c3eda96a8880e42643ca24320ef1899beaaf7de921cf663b517eb18286e378f

x86_64

rhel9/httpd-24@sha256:748c5e58b6ebb9f1b1d817cec107fdc6163a6db0c0abb618d24c7b779aecb71e
ubi9/httpd-24@sha256:748c5e58b6ebb9f1b1d817cec107fdc6163a6db0c0abb618d24c7b779aecb71e
ubi9/perl-532@sha256:106500840dae8b088927418a9b587ee76334d55048a4a8ba920780dc927443e7
rhel9/perl-532@sha256:106500840dae8b088927418a9b587ee76334d55048a4a8ba920780dc927443e7
rhel9/php-80@sha256:52fcd866dea3fb3113356947caceb2d758f6bc165b4f6d9add3515e3eed2556f
ubi9/php-80@sha256:52fcd866dea3fb3113356947caceb2d758f6bc165b4f6d9add3515e3eed2556f
rhel9/php-81@sha256:cbeb040825ea9f6f066853dbbb5aa7b8f58457a44c19b74371a7186a475deb38
ubi9/php-81@sha256:cbeb040825ea9f6f066853dbbb5aa7b8f58457a44c19b74371a7186a475deb38
rhel9/php-82@sha256:bd079cc6148406a900166fdda6f042279598e653e2a3643eb8fa766af5d5c311
ubi9/php-82@sha256:bd079cc6148406a900166fdda6f042279598e653e2a3643eb8fa766af5d5c311
rhel9/python-311@sha256:2fdd72d9c6e47de50dee749078c0445ab553eccf3bb47fbab2eb927afe0762a1
ubi9/python-311@sha256:2fdd72d9c6e47de50dee749078c0445ab553eccf3bb47fbab2eb927afe0762a1
rhel9/python-312@sha256:058689ec106657b9ffe261d36fcf2bdc2df1127cd37529221805e6b33a2cdd39
ubi9/python-312@sha256:058689ec106657b9ffe261d36fcf2bdc2df1127cd37529221805e6b33a2cdd39
rhel9/python-39@sha256:6d27c4f3764ad0347732583da55e9276dd1fb72b4662584afe583ba60732e9b0
ubi9/python-39@sha256:6d27c4f3764ad0347732583da55e9276dd1fb72b4662584afe583ba60732e9b0

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.