Red Hat Product Errata RHBA-2025:15873 - Bug Fix Advisory
Issued:
2025-09-15
Updated:
2025-09-15

RHBA-2025:15873 - Bug Fix Advisory

Synopsis

updated RHEL-9 based Middleware Containers container images

Type/Severity

Bug Fix Advisory

Topic

Updated RHEL-9 based Middleware Containers container images are now available

Description

The RHEL-9 based Middleware Containers container images have been updated to address the following security advisory: RHSA-2025:15700 (see References)

Users of RHEL-9 based Middleware Containers container images are advised to upgrade to these updated images, which contain backported patches to correct these security issues, fix these bugs and add these enhancements. Users of these images are also encouraged to rebuild all container images that depend on these images.

You can find images updated by this advisory in Red Hat Container Catalog (see References).

Solution

The RHEL-9 based Middleware Containers container images provided by this update can be downloaded from the Red Hat Container Registry at registry.access.redhat.com. Installation instructions for your platform are available at Red Hat Container Catalog (see References).

Dockerfiles and scripts should be amended either to refer to this new image specifically, or to the latest image generally.

Affected Products

  • Red Hat JBoss Middleware 1 x86_64

Fixes

  • BZ - 2392595 - CVE-2025-58060 cups: Authentication Bypass in CUPS Authorization Handling
  • BZ - 2393078 - CVE-2025-58364 cups: Null Pointer Dereference in CUPS ipp_read_io() Leading to Remote DoS

aarch64

openjdk-tech-preview/openjdk-21-jlink-rhel9@sha256:b46bc6040aca3c23852b474ed6451618b0c56016d62248252dc7b565497c8626
ubi9/openjdk-17@sha256:dfa6c07c1cfa25ab59dc6b8a65518b279d683ac1090fa827407c5e371421b7b6
ubi9/openjdk-17-runtime@sha256:0524645ddf2de51c3e56897d2b884f89983299da818f65fba35ccafc4f0782d9
ubi9/openjdk-21@sha256:ec1a06b10e449c27922ce18064be8512226d88b28046491f1bf85b8cd5d84a8a
ubi9/openjdk-21-runtime@sha256:840dd58f94aa5195ebe83602d352ce50a0e6d1f4dd74968f9a31d622d3867d04

ppc64le

openjdk-tech-preview/openjdk-21-jlink-rhel9@sha256:79865b29f57e023d9920571d4fdd793fde5f7af7bcd831805ad3916d3f55e8b2
ubi9/openjdk-17@sha256:685b515e184aae3146ac8ee8014e2c05a11480858b58a4230bb81128ebac4eb0
ubi9/openjdk-17-runtime@sha256:ffb41c10fa49090b243f0bb27f0c16fbebb5e84ca528b420cbc7dfb75ac99489
ubi9/openjdk-21@sha256:cda45fc55eddd68a3cf334defafc5fc719ee4735b5af60f25c68e2719a1f475b
ubi9/openjdk-21-runtime@sha256:c7769fdf46857f68bacce7df278eeb5b3397c71b0d3b017a5c29fddb2f409b00

s390x

openjdk-tech-preview/openjdk-21-jlink-rhel9@sha256:7e1f5f3c217cd8990f7192d12e15e8968cd3888d11a3363933083c806acadca0
ubi9/openjdk-17@sha256:d3348e19422fe4b8f4c1fff36d10b2e636084eee5bf8b03def5c96d6c241bff8
ubi9/openjdk-17-runtime@sha256:f63e82e98f5536f3ee7b3e800118c84c6fd95480bc7c2ad311ec2d80c09d86a2
ubi9/openjdk-21@sha256:995d8e32be53d3a8d3e09c424fa100baf1dc830bfb07ebdaae8a024582523d68
ubi9/openjdk-21-runtime@sha256:84082dc42de78c547fd7a5c39b0c8681b7eb243080a6cc36dbc59eb63ef1b0b0

x86_64

openjdk-tech-preview/openjdk-21-jlink-rhel9@sha256:b35d399c3005a84743b0a8c8dd6cdaf8f750aa4abe57cca23f48747a22462bbc
ubi9/openjdk-17@sha256:896e90161b947dd105eee3a188e02d383dd9616b2c4027372169f97b666ff0ec
ubi9/openjdk-17-runtime@sha256:ce4313340af8ea1a988043288a3b4019d106120d94c63e3f8932573ddd024cbf
ubi9/openjdk-21@sha256:cbeb5fe0e97d575714cf61e68ec6b9e000263516140d6bcf922a8dabbac50da1
ubi9/openjdk-21-runtime@sha256:bba8d46465ebc1005a953f4640056b5b91ca46e0d8ada4af47feb32e957287ad

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.