Red Hat Product Errata RHBA-2025:10826 - Bug Fix Advisory
Issued:
2025-07-10
Updated:
2025-07-10

RHBA-2025:10826 - Bug Fix Advisory

Synopsis

updated RHEL-9 based Middleware Containers container images

Type/Severity

Bug Fix Advisory

Topic

Updated RHEL-9 based Middleware Containers container images are now available

Description

The RHEL-9 based Middleware Containers container images have been updated to address the following security advisory: RHSA-2025:10699 (see References)

Users of RHEL-9 based Middleware Containers container images are advised to upgrade to these updated images, which contain backported patches to correct these security issues, fix these bugs and add these enhancements. Users of these images are also encouraged to rebuild all container images that depend on these images.

You can find images updated by this advisory in Red Hat Container Catalog (see References).

Solution

The RHEL-9 based Middleware Containers container images provided by this update can be downloaded from the Red Hat Container Registry at registry.access.redhat.com. Installation instructions for your platform are available at Red Hat Container Catalog (see References).

Dockerfiles and scripts should be amended either to refer to this new image specifically, or to the latest image generally.

Affected Products

  • Red Hat JBoss Middleware 1 x86_64

Fixes

  • BZ - 2372373 - CVE-2025-49794 libxml: Heap use after free (UAF) leads to Denial of service (DoS)
  • BZ - 2372385 - CVE-2025-49796 libxml: Type confusion leads to Denial of service (DoS)
  • BZ - 2372406 - CVE-2025-6021 libxml2: Integer Overflow in xmlBuildQName() Leads to Stack Buffer Overflow in libxml2

aarch64

openjdk-tech-preview/openjdk-21-jlink-rhel9@sha256:ff078c7dba1b391c522487c19e8a090798ed9027f7914e364cd89016412811f6
ubi9/openjdk-17@sha256:febe83cc6481680166e47596ab92f148df786b2963e36dce600bca1cb765a34f
ubi9/openjdk-17-runtime@sha256:89c9c93d0de3793cbb60eafad984a55ed6db4d8ee62d8af2d3988d5a00119ea1
ubi9/openjdk-21@sha256:39380d96d9222d7cc1fb08abead2c6d6bc8f1723bc1bc2840304e927f1c248c8
ubi9/openjdk-21-runtime@sha256:50a64f4f72da7a40887eeb9c0461e8590d9ea9aded2f201f850a1ffca403846e

ppc64le

openjdk-tech-preview/openjdk-21-jlink-rhel9@sha256:6e62cad9cc1ac8fccbafc3f855a011a87f6b91de4caa05dc7d2914c2fc614869
ubi9/openjdk-17@sha256:f67ceeebcd20c24e98c15e0f21be59869029122ac2068dbc94f92b4c125753c4
ubi9/openjdk-17-runtime@sha256:c40039cb663ca90058ca2ee184d504607c1c0f3e6dc0ae89d26c12b8584c51a7
ubi9/openjdk-21@sha256:ed4edd4628e61bbaeaf3edcf4bd05f7e970afe766377fa521ee73f750dd9a641
ubi9/openjdk-21-runtime@sha256:a71f2681b910caa1eadd41d072d80c51692fbb5cc8ddb9b117dac82cc0640c35

s390x

openjdk-tech-preview/openjdk-21-jlink-rhel9@sha256:968c892417e60f342b0670bb8603e3cde4615b27ac8dec0274f4e76c245e0e6d
ubi9/openjdk-17@sha256:e62dc92a220871809756b267d9d615a0d868173c8155f66c8b6f8c0a6fa8ffa7
ubi9/openjdk-17-runtime@sha256:b33546afbc995aa918bd446032ca10ee5679e8cb1f64cb770fc8bce4fad01e62
ubi9/openjdk-21@sha256:5b209764bcfa19644e4d84ecd610f93a0e342485f1f5e04b8b824ef9988f06cd
ubi9/openjdk-21-runtime@sha256:f3a0028019a6a2275fcd17f950322b50ba25e47c492c3c2d4ff28906e1d17808

x86_64

openjdk-tech-preview/openjdk-21-jlink-rhel9@sha256:e8dd2a8d9be1b48a2a6de411c76d28d61420590126cd65d7052f2ea4742e16cd
ubi9/openjdk-17@sha256:30decd67123db17fbbf0b7c265b76e0326ca38b8d63014e9003dca98680834ca
ubi9/openjdk-17-runtime@sha256:68be23d7fb4ecf7d6f4b795b6003d2211386b3d56b607399c9544207c1c33724
ubi9/openjdk-21@sha256:13349546de9605ab1d8d653960b16581eeba819dee87e4b627f3c2d7a9e8a489
ubi9/openjdk-21-runtime@sha256:bb2fc299dc475ca74cab43514183785579ad705c50cde94edcd737aec51f9181

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.