Red Hat Product Errata RHBA-2025:1595 - Bug Fix Advisory
Issued:
2025-02-17
Updated:
2025-02-17

RHBA-2025:1595 - Bug Fix Advisory

Synopsis

updated Red Hat OpenShift Dev Spaces 3 container images

Type/Severity

Bug Fix Advisory

Topic

Updated Red Hat OpenShift Dev Spaces 3 container images are now available

Description

The Red Hat OpenShift Dev Spaces 3 container images have been updated to address the following security advisory: RHSA-2025:1346 (see References)

Users of Red Hat OpenShift Dev Spaces 3 container images are advised to upgrade to these updated images, which contain backported patches to correct these security issues, fix these bugs and add these enhancements. Users of these images are also encouraged to rebuild all container images that depend on these images.

You can find images updated by this advisory in Red Hat Container Catalog (see References).

Solution

The Red Hat OpenShift Dev Spaces 3 container images provided by this update can be downloaded from the Red Hat Container Registry at registry.access.redhat.com. Installation instructions for your platform are available at Red Hat Container Catalog (see References).

Dockerfiles and scripts should be amended either to refer to this new image specifically, or to the latest image generally.

Affected Products

  • Red Hat OpenShift Dev Spaces 3 x86_64

Fixes

  • BZ - 1850004 - CVE-2020-11023 jquery: Untrusted code execution via <option> tag in HTML passed to DOM manipulation methods

ppc64le

devspaces/configbump-rhel9@sha256:589a93d6c16d67de8f8b2af800d8c425bfadb0c9686a4aaa9b08cb262ba7ec6a
devspaces/dashboard-rhel9@sha256:7354bbe25c714b30b1b5ead4f1fc633d63763310135e94be742589c69745e021
devspaces/devspaces-rhel9-operator@sha256:7bb219680608d05ccec7f8c4d949fbf1f9fb0067f052dc92e6f497546237d5b4
devspaces/imagepuller-rhel9@sha256:d3ab54592ba0817980a8215c8858ded2d0e9586991c7e2d26dbbdaf512e653fe
devspaces/machineexec-rhel9@sha256:5de0bdff3a5560cd4e599c742361173a9af2c36d21e9f189140d366fa7dc9d99
devspaces/server-rhel9@sha256:dfbc7f1a29251ee2ef9c05397d12fbad524f6ee65d28766143b2ae913c8aa007
devspaces/traefik-rhel9@sha256:33f33eb57842b750b24934c4c8f1edeb700541ec840be59bc25ac09ba1ac29b2
devspaces/udi-rhel9@sha256:bfd9343d80dad75fbb77cd4ba860343e25a073ac05e0d7a0f32b00d264f16ae1

s390x

devspaces/configbump-rhel9@sha256:1c8f8c91ce98b3154aca1434712dc4cd0c51ea10411b0b6a65ccde846ce8a189
devspaces/dashboard-rhel9@sha256:9d3de130a9d18fa77c8dd599ce0f5183eac09e82deae1082252c0c40599e1376
devspaces/devspaces-rhel9-operator@sha256:00167b852c5f5c32e8407b368c45b9eac85e97e4d1960d22dac81e04613ff5b4
devspaces/imagepuller-rhel9@sha256:14367bd5a518523ac09fe0dc3757266ade83f786728317624cab1415448e7c82
devspaces/machineexec-rhel9@sha256:eb58ff217b8bef80b58a1fd5b1bb3fe600b487359a07e659bc420d2bc53b63e9
devspaces/server-rhel9@sha256:ecc8de9a01d550fdd7d0d5e1db1d41df07e69e7ccb46d3009ed22696ceff725a
devspaces/traefik-rhel9@sha256:b6697735f3a9564c9b420f43fadac3c03695a6f02036850297b6302e5af74215
devspaces/udi-rhel9@sha256:1bae1caf3447e8b375af689bf06dc502eb04b1bf1942ad34f0dc2b71c2582b52

x86_64

devspaces-tech-preview/idea-rhel9@sha256:c4ac45a19721e4c581bf7cd8433e0938d8b8e6c396e71488298a81600b134ed4
devspaces/configbump-rhel9@sha256:ccefc02ccb55f703b0a7a777613313f9c1b449d40779a4110ff4a6566d59215a
devspaces/dashboard-rhel9@sha256:85becdca93ce8a48c33eeb65d1c5e24bddada5daa4ca1412b908abd6cc20f3e0
devspaces/devspaces-rhel9-operator@sha256:f7cac6cfccdea1479feb250dd9041def8de6219f9dbff45e966fe4f996765daa
devspaces/imagepuller-rhel9@sha256:5a64ed7248376de0474c15d4a7f0484e6c7be7b8c0e4733ccabf64a003ecffe0
devspaces/machineexec-rhel9@sha256:0792e2f0c769896bb19e684a2328f05f62575fc1472e080e8cd687d56b3ff2c5
devspaces/server-rhel9@sha256:c41b121a73d685194b0951d1a14404f31c365a544a06e8059af2064fcc05ef45
devspaces/traefik-rhel9@sha256:e7db8a0f2043127dd1dba8b3716f15c4bcc59205e919a4f32a2fd4e37b73ad7d
devspaces/udi-rhel9@sha256:e840c4e6e29964a94dd6d2e03a893e1227f7081588d877abc165e8adf0a3ace5

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.