红帽产品勘误 RHBA-2024:8441 - Bug Fix Advisory
发布:
2024-10-24
已更新:
2024-10-24

RHBA-2024:8441 - Bug Fix Advisory

概述

updated rhel9/support-tools container image

类型/严重性

Bug Fix Advisory

标题

Updated rhel9/support-tools container image is now available for Red Hat Enterprise Linux 9.

描述

The rhel9/support-tools container image has been updated for Red Hat Enterprise Linux 9 to address the following security advisory: RHSA-2024:8162 (see References)

Users of rhel9/support-tools container images are advised to upgrade to these updated images, which contain backported patches to correct these security issues, fix these bugs and add these enhancements. Users of these images are also encouraged to rebuild all container images that depend on these images.

You can find images updated by this advisory in Red Hat Container Catalog (see References).

解决方案

The Red Hat Enterprise Linux 9 container image provided by this update can be downloaded from the Red Hat Container Registry at registry.access.redhat.com. Installation instructions for your platform are available at Red Hat Container Catalog (see References).

Dockerfiles and scripts should be amended either to refer to this new image specifically, or to the latest image generally.

受影响的产品

  • Red Hat Enterprise Linux for x86_64 9 x86_64
  • Red Hat Enterprise Linux for IBM z Systems 9 s390x
  • Red Hat Enterprise Linux for Power, little endian 9 ppc64le
  • Red Hat Enterprise Linux for ARM 64 9 aarch64

修复

  • BZ - 2270700 - CVE-2023-28746 kernel: Local information disclosure on Intel(R) Atom(R) processors
  • BZ - 2281127 - CVE-2024-27403 kernel: netfilter: nft_flow_offload: reset dst in route object after setting up flow
  • BZ - 2281149 - CVE-2023-52658 kernel: Revert "net/mlx5: Block entering switchdev mode with ns inconsistency"
  • BZ - 2281847 - CVE-2024-35989 kernel: dmaengine: idxd: Fix oops during rmmod on single-CPU platforms
  • BZ - 2282355 - CVE-2021-47385 kernel: hwmon: (w83792d) Fix NULL pointer dereference by removing unnecessary structure field
  • BZ - 2284571 - CVE-2024-36889 kernel: mptcp: ensure snd_nxt is properly initialized on connect
  • BZ - 2293078 - CVE-2024-36978 kernel: net: sched: sch_multiq: fix possible OOB write in multiq_tune()
  • BZ - 2293443 - CVE-2024-38556 kernel: net/mlx5: Add a timeout to acquire the command queue semaphore
  • BZ - 2295921 - CVE-2024-39483 kernel: KVM: SVM: WARN on vNMI + NMI window iff NMIs are outright masked
  • BZ - 2297474 - CVE-2024-39502 kernel: ionic: fix use after netif_napi_del()
  • BZ - 2297543 - CVE-2024-40959 kernel: xfrm6: check ip6_dst_idev() return value in xfrm6_get_saddr()
  • BZ - 2300517 - CVE-2024-42079 kernel: gfs2: Fix NULL pointer dereference in gfs2_log_flush

aarch64

rhel9/support-tools@sha256:0c472904efd566b99f8b543cd8a3bfa9dbd4b479b09824a9591a5232a0726f6f

ppc64le

rhel9/support-tools@sha256:5f9a4cd4251576057baee52576532b40dec93a9614b8c534627a03428438b891

s390x

rhel9/support-tools@sha256:aa2d3b5108206275ce62bbe77cdeb3dfc9cbc0e7e51a8108672e671b82cbd35c

x86_64

rhel9/support-tools@sha256:d340d4cfa560128843e42cbb34096fac0e87f32d856dca8c9dc116bc55a1a947

Red Hat 安全团队联络方式为 secalert@redhat.com。 更多联络细节请参考 https://access.redhat.com/security/team/contact/