Red Hat Product Errata RHBA-2024:5704 - Bug Fix Advisory
Issued:
2024-08-21
Updated:
2024-08-21

RHBA-2024:5704 - Bug Fix Advisory

Synopsis

updated Red Hat Enterprise Linux 9 container images

Type/Severity

Bug Fix Advisory

Topic

Updated Red Hat Enterprise Linux 9 container images are now available

Description

The Red Hat Enterprise Linux 9 container images have been updated to address the following security advisory: RHSA-2024:5231 (see References)

Users of Red Hat Enterprise Linux 9 container images are advised to upgrade to these updated images, which contain backported patches to correct these security issues, fix these bugs and add these enhancements. Users of these images are also encouraged to rebuild all container images that depend on these images.

You can find images updated by this advisory in Red Hat Container Catalog (see References).

Solution

The Red Hat Enterprise Linux 9 container images provided by this update can be downloaded from the Red Hat Container Registry at registry.access.redhat.com. Installation instructions for your platform are available at Red Hat Container Catalog (see References).

Dockerfiles and scripts should be amended either to refer to this new image specifically, or to the latest image generally.

Affected Products

  • Red Hat Enterprise Linux for x86_64 9 x86_64
  • Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.6 x86_64
  • Red Hat Enterprise Linux Server - AUS 9.6 x86_64
  • Red Hat Enterprise Linux for IBM z Systems 9 s390x
  • Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.6 s390x
  • Red Hat Enterprise Linux for Power, little endian 9 ppc64le
  • Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.6 ppc64le
  • Red Hat Enterprise Linux for ARM 64 9 aarch64
  • Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.6 aarch64
  • Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.6 ppc64le
  • Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.6 x86_64
  • Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.6 aarch64
  • Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.6 s390x

Fixes

  • BZ - 2298893 - CVE-2024-1737 bind: bind9: BIND's database will be slow if a very large number of RRs exist at the same nam
  • BZ - 2298901 - CVE-2024-1975 bind9: bind: SIG(0) can be used to exhaust CPU resources
  • BZ - 2298904 - CVE-2024-4076 bind: bind9: Assertion failure when serving both stale cache data and authoritative zone content

aarch64

rhel9/httpd-24@sha256:629cf69320b28110bddf5771b22301e1042b95b2bd59ea0cf1b87435d0aa8ceb
ubi9/httpd-24@sha256:629cf69320b28110bddf5771b22301e1042b95b2bd59ea0cf1b87435d0aa8ceb
rhel9/mariadb-1011@sha256:dc67fe3d8369a252b49b34ffa83f513ca364a965bb2b8e5adf0c70643a096a12
rhel9/mariadb-105@sha256:830145e30d3ad68a02824704af14bba9d17de8194962ee9188cf965c02617f41
rhel9/mysql-80@sha256:500781619ac6c29ebdff7f55cf17f0bbddfb00d83274b19dc73281e7f5acfc62
ubi9/nginx-120@sha256:4545ec2cff348e9d35ea90cef555f6feb1b2225b7b539ae934271cf5c807422b
rhel9/nginx-120@sha256:4545ec2cff348e9d35ea90cef555f6feb1b2225b7b539ae934271cf5c807422b
ubi9/nginx-122@sha256:cfe3c57293dea912a674020b3e3a29bb924914157f8ac51127f72b8a5c0e1bf3
rhel9/nginx-122@sha256:cfe3c57293dea912a674020b3e3a29bb924914157f8ac51127f72b8a5c0e1bf3
rhel9/nginx-124@sha256:ae54ba65644b60590cb603b1463c264c250e2784e02b094752c719c7c8c3cdf9
ubi9/nginx-124@sha256:ae54ba65644b60590cb603b1463c264c250e2784e02b094752c719c7c8c3cdf9
rhel9/postgresql-13@sha256:5970f7e13d59258de2eb714b3196fc43fc59abc55a17d7b0215ff2cd8c552595
rhel9/postgresql-15@sha256:de829e89225f1f04991dd35c263d45ceb2991a4a3b68e0d91a1c9db4b06ccb5f
rhel9/postgresql-16@sha256:8dbe0fedd6e10b1c9afd71e7b26bef32966abd91cf1ac410c6500a00e4c3d78b

ppc64le

rhel9/httpd-24@sha256:53e3a694288f8fb1111c5feb3ce919e89a74b27415a8655d196350cdfafe862b
ubi9/httpd-24@sha256:53e3a694288f8fb1111c5feb3ce919e89a74b27415a8655d196350cdfafe862b
rhel9/mariadb-1011@sha256:eec1c858163303db05698d8594b38b0e1679a22eabe44d5d530230d8f721b986
rhel9/mariadb-105@sha256:3d4a12da4d52a6c0febc9d7c06a1eb9ea043e4fa59ebfb23bdcb4bb18f4c4cc5
rhel9/mysql-80@sha256:50f3bb66738918b0c119277319840abc62ccd136ada22fe3777b86207b04989e
ubi9/nginx-120@sha256:df501696035871a1fa15f792ba6427e4362daf6781d11913c34121292093b2f0
rhel9/nginx-120@sha256:df501696035871a1fa15f792ba6427e4362daf6781d11913c34121292093b2f0
ubi9/nginx-122@sha256:4288a9bdab60e3e7c63e1f52b20143c4a1d3c920b1385201eef2b57ff0e9aea4
rhel9/nginx-122@sha256:4288a9bdab60e3e7c63e1f52b20143c4a1d3c920b1385201eef2b57ff0e9aea4
rhel9/nginx-124@sha256:d42caad7290df0cf98d7f9c6e7e25824bf36aa4aaa466679b7bb03e5e34bec6d
ubi9/nginx-124@sha256:d42caad7290df0cf98d7f9c6e7e25824bf36aa4aaa466679b7bb03e5e34bec6d
rhel9/postgresql-13@sha256:85dcfc1557e995f77f671752de2cb5951ec130314db63b64479f2b381493a927
rhel9/postgresql-15@sha256:a309969cd5b12612f8cee2bcb2999cf1d5ef9d9e93e5b544093624b82ea76ba7
rhel9/postgresql-16@sha256:10bbfeb3356cfad6cba3a0e00438ecdc7c3bea9bf6914bcb960579292154fda0

s390x

rhel9/httpd-24@sha256:5d8b79b9131db1d5eafa71b4907b90af11a7bce27090b5b77f2b86f802a28b6d
ubi9/httpd-24@sha256:5d8b79b9131db1d5eafa71b4907b90af11a7bce27090b5b77f2b86f802a28b6d
rhel9/mariadb-1011@sha256:bde1fffe8bb78ef8dc1a7e72475f60c3e4451f0a03ccc78e19f5e15ead6ce422
rhel9/mariadb-105@sha256:68417dba91a8ab84aa4b29414cb18163decf7bfb0ae3208493820ff0b6c22ab6
rhel9/mysql-80@sha256:9188a76b5de0570c9aadbd95dfe0acb5dd398410a4a0dcc2debe5a7743bfb540
ubi9/nginx-120@sha256:df57fe64b7e3ed9c3ee31c5911ee19903a2c118304472a615c54778230c70bad
rhel9/nginx-120@sha256:df57fe64b7e3ed9c3ee31c5911ee19903a2c118304472a615c54778230c70bad
ubi9/nginx-122@sha256:bd424b2ca12b3d9f0190bb38a1fd81958654ed51e533b28a29364bd2aaae5595
rhel9/nginx-122@sha256:bd424b2ca12b3d9f0190bb38a1fd81958654ed51e533b28a29364bd2aaae5595
rhel9/nginx-124@sha256:5b85cc53a89fcc8348a37bf59f8771cf25451b5a378b0a64634646dda9e0193c
ubi9/nginx-124@sha256:5b85cc53a89fcc8348a37bf59f8771cf25451b5a378b0a64634646dda9e0193c
rhel9/postgresql-13@sha256:31565c095e724bc586ebd40d67b0dac52f80770c19528ec07847299a2fc3df6a
rhel9/postgresql-15@sha256:c2f91feaa352da342e977576cbd8d16f58206d2e9653286d8265bf58b2aa3a54
rhel9/postgresql-16@sha256:7bf3530aabb75a0f96e8687f0388c807c21c8afc3eabb7eea586350a48787999

x86_64

rhel9/httpd-24@sha256:95589b2d1ccc3365479e2c8664f862184d5233b7b3b06e1cd63346c5801f890a
ubi9/httpd-24@sha256:95589b2d1ccc3365479e2c8664f862184d5233b7b3b06e1cd63346c5801f890a
rhel9/mariadb-1011@sha256:e6a47e86f9ca611e14cbf5a267bf69726cabac3366f72686184f98e8dec6bf73
rhel9/mariadb-105@sha256:d71dd947ce8fc2e39a2d6e448835437013ad2b86dc413331e458066f8f52b955
rhel9/mysql-80@sha256:456601761d8e2fbc7c76a478b29dfe7130f220475059f649b085c0739cff8b61
ubi9/nginx-120@sha256:7bcf1bc901654593e5bcc653ffa54b4724f68ef3fb4abdb49a569ec8e02efe99
rhel9/nginx-120@sha256:7bcf1bc901654593e5bcc653ffa54b4724f68ef3fb4abdb49a569ec8e02efe99
ubi9/nginx-122@sha256:fb2733b92adc78641f9e4e8559fdc99ccf6ddf416c9adcf49277617f486a5e6d
rhel9/nginx-122@sha256:fb2733b92adc78641f9e4e8559fdc99ccf6ddf416c9adcf49277617f486a5e6d
rhel9/nginx-124@sha256:15c2cfc0713251aaa6a0eba0e832623678303bf02f43c0573baa88c18af4ef1e
ubi9/nginx-124@sha256:15c2cfc0713251aaa6a0eba0e832623678303bf02f43c0573baa88c18af4ef1e
rhel9/postgresql-13@sha256:3c47bbc370c42a56690ff39d640ebfa2da18e8e1058c042625a257bf4235b02b
rhel9/postgresql-15@sha256:efe307e1511b6bd8c81307770b5ed1e7ac16fc0b37907c14bff1fabba197b737
rhel9/postgresql-16@sha256:a518cd1dab03abe4123224daa4ed3d89a52b2a4927b3cf5ab2cfa48295368d85

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.