Red Hat Product Errata RHBA-2024:8253 - Bug Fix Advisory
Issued:
2024-10-17
Updated:
2024-10-17

RHBA-2024:8253 - Bug Fix Advisory

Synopsis

updated RHEL-8 based Middleware Containers container images

Type/Severity

Bug Fix Advisory

Topic

Updated RHEL-8 based Middleware Containers container images are now available

Description

The RHEL-8 based Middleware Containers container images have been updated to address the following security advisory: RHSA-2024:8117 (see References)

Users of RHEL-8 based Middleware Containers container images are advised to upgrade to these updated images, which contain backported patches to correct these security issues, fix these bugs and add these enhancements. Users of these images are also encouraged to rebuild all container images that depend on these images.

You can find images updated by this advisory in Red Hat Container Catalog (see References).

Solution

The RHEL-8 based Middleware Containers container images provided by this update can be downloaded from the Red Hat Container Registry at registry.access.redhat.com. Installation instructions for your platform are available at Red Hat Container Catalog (see References).

Dockerfiles and scripts should be amended either to refer to this new image specifically, or to the latest image generally.

Affected Products

  • Red Hat OpenShift Container Platform 4.12 for RHEL 8 x86_64
  • Red Hat OpenShift Container Platform 4.11 for RHEL 8 x86_64
  • Red Hat OpenShift Container Platform 4.10 for RHEL 8 x86_64
  • Red Hat OpenShift Container Platform for Power 4.10 for RHEL 8 ppc64le
  • Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.10 for RHEL 8 s390x
  • Red Hat OpenShift Container Platform for ARM 64 4.10 aarch64

Fixes

  • BZ - 2251025 - CVE-2023-48161 giflib: Heap-Buffer Overflow during Image Saving in DumpScreen2RGB Function
  • BZ - 2318524 - CVE-2024-21210 JDK: Array indexing integer overflow (8328544)
  • BZ - 2318526 - CVE-2024-21208 JDK: HTTP client improper handling of maxHeaderSize (8328286)
  • BZ - 2318530 - CVE-2024-21217 JDK: Unbounded allocation leads to out-of-memory error (8331446)
  • BZ - 2318534 - CVE-2024-21235 JDK: Integer conversion error leads to incorrect range check (8332644)

aarch64

ubi8/openjdk-8@sha256:7c7f245c4aed76f8ee536d787b24fa21b24666a3db2b78befc6f1d44da0a2163
ubi8/openjdk-8-runtime@sha256:88f771a4626e5b014dee4f19ef59996f1b6a0356e07446214578cfb1417fc433

ppc64le

ubi8/openjdk-8@sha256:dc97dd3348e52c8a784b9d0b680e3000c997084c77bb58f9e7158830db76cc48
ubi8/openjdk-8-runtime@sha256:baeb5fe720c3662b9d936771d5093d2adeff3f5a8cdf34aac89ab4a9e1e27f3d

s390x

ubi8/openjdk-8@sha256:2db1bee844f87244257447fb0a23bfe0b378026ec2dffeff131278ff21805a83
ubi8/openjdk-8-runtime@sha256:e611c7ca6ab37a93bcd4746dcddeeaa08f633930509252cfd0bc0ade19eedba0

x86_64

ubi8/openjdk-8@sha256:88cc3e2c14662399d51643676e05ec975df08b503aa95857b5a4cce35128e49b
ubi8/openjdk-8-runtime@sha256:c59b00ace301b7d9cb7f9266559ee2c9472ccc3fcb6761c312ccdeb2246220b0

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.