- Issued:
- 2025-06-11
- Updated:
- 2025-06-11
RHBA-2025:8930 - Bug Fix Advisory
Synopsis
ACS 4.7 bug fix update
Type/Severity
Bug Fix Advisory
Topic
Updated images are now available for Red Hat Advanced Cluster Security (RHACS).
Description
This release of RHACS 4.7 provides the following bug fixes:
- Fixed an issue where images were mistakenly pruned when the inactive images retention value was set to 0. This action caused resetting of the firstDiscovered and firstImageOccurrence values for CVEs.
- Fixed an issue with the web portal where you could not scroll when assigning roles to an auth provider.
This release provides fixes for these security issues:
- zlib: Out-of-bounds pointer arithmetic in inftrees.c (CVE-2016-9840)
- krb5: Kerberos RC4-HMAC-MD5 checksum vulnerability (CVE-2025-3576)
Solution
If you are using an earlier version of RHACS 4.7, you are advised to upgrade to patch release 4.7.4.
Affected Products
- Red Hat Advanced Cluster Security for Kubernetes 4 x86_64
- Red Hat Advanced Cluster Security for Kubernetes for IBM Z and LinuxONE 4 s390x
- Red Hat Advanced Cluster Security for Kubernetes for IBM Power, little endian 4 ppc64le
- Red Hat Advanced Cluster Security for Kubernetes for ARM 4 aarch64
Fixes
- ROX-29612 - Release RHACS 4.7.4
aarch64
| advanced-cluster-security/rhacs-central-db-rhel8@sha256:0b8112b0e4ffdb75e28d16025246f0bb3692276702b445f6181a604147431d24 |
| advanced-cluster-security/rhacs-collector-rhel8@sha256:069fc6d7a93aad10c336508e52ecdf3400dc1d33e366de85ab54758f52824ae4 |
| advanced-cluster-security/rhacs-main-rhel8@sha256:de68d3a79966eaf732bdb88e902fcc01998065841ea2aa3245f5686367cb8022 |
| advanced-cluster-security/rhacs-operator-bundle@sha256:0edf6360f70164bdfaf154a44958cfa9668b9e921c7236bed498249c453d4794 |
| advanced-cluster-security/rhacs-rhel8-operator@sha256:cd2837347459629cbf57563eb5e3ff5eb1506fe32d3b1aec67dfcdc3d56ec1bc |
| advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2656a3634d072ac904fc1e61348a9afa55b404db56825769556a3348b181c159 |
| advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:827e0567156a6e0127b8b68c26bb1baf7f16157a5c728bff524ebfbb90b8b371 |
| advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:a4a69b58b0538c7eff1c2f9a8d83a2a2e9a53ff761e0960f861c24862e76eda8 |
| advanced-cluster-security/rhacs-scanner-rhel8@sha256:53fbffcc2b8428b4fcfa8cbf35ee9d9837fed77268fadb2a72ff01a14ca1145b |
| advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:2dcda72b401d40fdbb46cec93e503d8307a667e4d2099f1fe0569e34d8a5d1ed |
| advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:f31f6c2df0699e87400139af1594c444c204af0d2fab4f907124580f893ead40 |
| advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:87c799c3af2e971c60ac586d4f34a081c3844082ae3cd39bcd1aae658bd404be |
ppc64le
| advanced-cluster-security/rhacs-central-db-rhel8@sha256:b341b41b9471e6a137b9c42aa98c77664a9f5dc12e0982badf226a9d51b8523b |
| advanced-cluster-security/rhacs-collector-rhel8@sha256:c1e352f7bdc98a47244ed689f5a08fee75440971da8904504ed33936cb0dc3b4 |
| advanced-cluster-security/rhacs-main-rhel8@sha256:283d97a6cf20d911db5673a2f4f5bcbe3bda0f69d5728de9d28d2c5454bd8f7e |
| advanced-cluster-security/rhacs-operator-bundle@sha256:2982434f3a5db1514b40487901434923ddae5014aa06453f93725f00508c149c |
| advanced-cluster-security/rhacs-rhel8-operator@sha256:9a50d7bbe1849eb8963e6c34079ce71b4427fda9d820f8cbdb80876e9df42695 |
| advanced-cluster-security/rhacs-roxctl-rhel8@sha256:bfa59be179f997a9b92b448c094ca850df523bd526de1bd8ee49133d9a36b4c7 |
| advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:91968f1455791e21f2e2db4941562ccb8a9a5918ebf1bc2101974bc1b7e857ce |
| advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4f18203c494f81e757a3b5c2c11103dae485f97627c7498047cbbe524e058818 |
| advanced-cluster-security/rhacs-scanner-rhel8@sha256:607e0c64300e8bcf4a9ee94d9bc6a9819dd5b7e325373112465356d0bfe7f27d |
| advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:64c293ff7af6f42842708a627b6b7535e4c3b78851e93b9e756b3e587cc66283 |
| advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:8a2572e9553f9ecc5d51674d122142962b4cbe4413363d8f64bb8f283c810777 |
| advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2d7f79e577d1d199b69108e024cf8f030f323e4d09116ed8808111770a7015ec |
s390x
| advanced-cluster-security/rhacs-central-db-rhel8@sha256:443278d399a699bab08b67b7298b3d76341cc79c4a70e3fd4c53f518a247c875 |
| advanced-cluster-security/rhacs-collector-rhel8@sha256:910fb2eadee4d45231621297050df5318b0b8b61b05e6f663de2e5b7a05ec366 |
| advanced-cluster-security/rhacs-main-rhel8@sha256:fbf431a61a0a76b209eda60cc7413f23ca6c098fe3fc5e3119aeb0408496aa6c |
| advanced-cluster-security/rhacs-operator-bundle@sha256:63f62018a609110eb4cd242ad690f975adc9c916f81477f87bf6f3f64519e53d |
| advanced-cluster-security/rhacs-rhel8-operator@sha256:effd85084fbc922c1cbb2a07eb9333f5ff4fcdae45d3a25a9f52c9b3cdd5a0a3 |
| advanced-cluster-security/rhacs-roxctl-rhel8@sha256:881899cb21a27c66cbceda3bf53850cf0caf0bb5bf542c417957ca7120c41543 |
| advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:18efc066120fa9f2e4003ea8a8ee0abd7bca192db21db3d58c00f8000b71c510 |
| advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:87ed3e431dc43ec7b615c5a4f422b025c408eae6a0e5a7518f108e7da369a7e8 |
| advanced-cluster-security/rhacs-scanner-rhel8@sha256:62494120334a21294118738a452d954edabe2f8ab7d7aada5ae90a9d71f219b5 |
| advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3eb78f5402341987c6c77a5e9823986068ba65d3006a58e0159cc7177620303c |
| advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:4a54c39ca3a1a8901df8610e316ee6ebe4e5d07ed09bee00b293243a2da55815 |
| advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:2ed78dae71f3b83815d8baea8ce93d6be6dacc9632a796a468af75c87b80e326 |
x86_64
| advanced-cluster-security/rhacs-central-db-rhel8@sha256:6699260874785a35e95e2726845e4ec06461b3655ff1bf234c8e85ca8e457b05 |
| advanced-cluster-security/rhacs-collector-rhel8@sha256:04160794c336536bc4496a2b7dc84ab32f47a34d942f0f02bc7aff37e8395eaf |
| advanced-cluster-security/rhacs-main-rhel8@sha256:cf03abb332bccd33100d032bd1b8c9cafcfe657b5566c4448f30cfa0dd92060c |
| advanced-cluster-security/rhacs-operator-bundle@sha256:e2b3a1c3d3731062e22f48cab08d5995cf2d5d0de66c85d69c50e5a6758034bf |
| advanced-cluster-security/rhacs-rhel8-operator@sha256:21a123c90f8ae4109ab3b8487c8ddf0276690196d7c087ea68ea64cf03e791a9 |
| advanced-cluster-security/rhacs-roxctl-rhel8@sha256:cf8785209060bd2739cc85f6dee890977362fd346f9bb7e55bbb0940cb07abf1 |
| advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:b456b6a5cad84de70c3a564398449bd04e936368fba3014088e879baa0162141 |
| advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:4b03d7f825e4d86ea845f7b1def92842135c3df15ee30be6cff216740861fcde |
| advanced-cluster-security/rhacs-scanner-rhel8@sha256:0e7cd4bb147df374c951d6a08a5d6cac813a099e436cd27554330ec75dffa447 |
| advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0806e42aa90eb197bb00676e121e7576945c843d25496d33ecbe9ff1e591ef91 |
| advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:cb3bf906d38ba7fbe6f7378a516731f8ccaccade85a7f82732531d059848270e |
| advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:07de096a60b891ddeb23ae17b1ba2918a13f0fd85e6b0711c07c1d216ffbceb0 |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.
