- Issued:
- 2025-06-11
- Updated:
- 2025-06-11
RHBA-2025:8931 - Bug Fix Advisory
Synopsis
ACS 4.6 bug fix update
Type/Severity
Bug Fix Advisory
Topic
Updated images are now available for Red Hat Advanced Cluster Security (RHACS).
Description
This release of RHACS 4.6 provides the following bug fixes:
- Fixed an issue where images were mistakenly pruned when the inactive images retention value was set to 0. This action caused resetting of the firstDiscovered and firstImageOccurrence values for CVEs.
- Fixed an issue with the web portal where you could not scroll when assigning roles to an auth provider.
This release provides fixes for these security issues:
- zlib: Out-of-bounds pointer arithmetic in inftrees.c (CVE-2016-9840)
- krb5: Kerberos RC4-HMAC-MD5 checksum vulnerability (CVE-2025-3576)
Solution
If you are using an earlier version of RHACS 4.6, you are advised to upgrade to patch release 4.6.7.
Affected Products
- Red Hat Advanced Cluster Security for Kubernetes 4 x86_64
- Red Hat Advanced Cluster Security for Kubernetes for IBM Z and LinuxONE 4 s390x
- Red Hat Advanced Cluster Security for Kubernetes for IBM Power, little endian 4 ppc64le
- Red Hat Advanced Cluster Security for Kubernetes for ARM 4 aarch64
Fixes
- ROX-29611 - Release RHACS 4.6.7
aarch64
| advanced-cluster-security/rhacs-central-db-rhel8@sha256:cae2982103d450cb005f2eb74daac8f432a7f715e9fcb65f42375720b4090037 |
| advanced-cluster-security/rhacs-collector-rhel8@sha256:f1435fb52a5f3154f05ea0ab6af4814e4784ca23e7d95c1f76693980d3f8ab6e |
| advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:221ee9a15bb25a828e64c4fa69888822efe68b8016d0bcc4a35277cf9c9a69a5 |
| advanced-cluster-security/rhacs-main-rhel8@sha256:f6df10389e2ba77bf491ef331731962daf0b10238b676f954f12a711ba2e09c0 |
| advanced-cluster-security/rhacs-operator-bundle@sha256:d234addae742b263cb67a5aa2bb288f629f727545f4793cb05a02278cb97a9d5 |
| advanced-cluster-security/rhacs-rhel8-operator@sha256:10b42c8ceaa62ca02f06b2c9533cf1409b9afecb053a34196b5e077bf039ddf6 |
| advanced-cluster-security/rhacs-roxctl-rhel8@sha256:d6b065eb72f4c3a4a5e2323b70c942b62db13b55f313006cdb47fe40c4d39e68 |
| advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:1992e8619ad29f9b867e76ae338486a706b3a40c225dd30acb66e5873d5661f9 |
| advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:3bd8331e54719cdc358b0ae4bafc97886f331f05516588b1204507523f933642 |
| advanced-cluster-security/rhacs-scanner-rhel8@sha256:118a11e7ddd0dbf8cd4b11b82fa79c2d3edce99bc3389bac2546f3357472fcdf |
| advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:59c67b4be8dcded3a54a3d3b764732e225116f8e61e36edb8fbbaeeaa8c6bc33 |
| advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:ae9dd1f7a829155272df0ba52f58627c7085b67f70670c729e72966858a1e8ba |
| advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:1483f26c0c93a200c7feb8433b2f81f18ed88a437edc611d6a1837ffbd7f2f90 |
ppc64le
| advanced-cluster-security/rhacs-central-db-rhel8@sha256:8e5ee492717f10773d09f6885cbf498e5b9c38bd10f635e95b6427f1ec5c0365 |
| advanced-cluster-security/rhacs-collector-rhel8@sha256:dd7e0e20ccd559c4f2172f6b71d3d77a4b26d9689bcb7201992c9788ad89dfe6 |
| advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:67bef941bde609beaaaab42ed674fd0a4a8d67fa1769ebbb032919dace0e2313 |
| advanced-cluster-security/rhacs-main-rhel8@sha256:bbb98d1febe14ead2dbe7d6287eeea8e5c0a18e9dcda1cc9ebe4db7c4287c0aa |
| advanced-cluster-security/rhacs-operator-bundle@sha256:4cd7d57e473c07605575fe42c1f5be5e2ed2090c23c819bc1cedb3bd6c5b6e2e |
| advanced-cluster-security/rhacs-rhel8-operator@sha256:51acc779bbd89e109d2b7c63b17040d0f6c7975a2f511f1d7b4e435862832ec6 |
| advanced-cluster-security/rhacs-roxctl-rhel8@sha256:62944f0888e61f376031d6f910cdae18a5904da19bb541ddcf8bbeb2f029d233 |
| advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:923d99c9c14e3288b5fe3b5ad8d1ea84eb1f2ad598cac10725e2a07523064a3f |
| advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:73f4863a40c932a6e20c90bfc119cdc5eea642d06ab4649afb3148d4d13d1e8c |
| advanced-cluster-security/rhacs-scanner-rhel8@sha256:810d30f348e629cfc6b32943cc3b234b8918ace091f55aed37fcd578250aef55 |
| advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:9ae92b4a7c45a1281c3b43ef6f6609503396540d2276308a32fced7256d3a6a2 |
| advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:1166535d1b476dc9c8187b54299bff6ee07383cd5aa12f435e74489f889f7da8 |
| advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:d36dc236505777a144811561c03fbc036e1cd96a786130f4fcf46f93dcef3847 |
s390x
| advanced-cluster-security/rhacs-central-db-rhel8@sha256:fbd343e4141000ef0b129a4d7845ae36390e3150c9970f3ed8f90bdd12b3068e |
| advanced-cluster-security/rhacs-collector-rhel8@sha256:edb11c9fe611d6125b3f01b096d3125516c35628bfb6dfb84be65b96954f6131 |
| advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:36fe53406f72a6a98a8d342f8c541db066457a45d9eb2e365f4f953fae7c1a68 |
| advanced-cluster-security/rhacs-main-rhel8@sha256:d4e8771096db35ac82546f64308d43860684ea0d2d3a17e12967f570eb12c304 |
| advanced-cluster-security/rhacs-operator-bundle@sha256:f5d4aeafb56f91626741fe9d50dd19e4b967f59b3b0133ca425e29a67cdbdca7 |
| advanced-cluster-security/rhacs-rhel8-operator@sha256:07e7bab15b2ec44c517572756d7d183de72b166df897129be37c105319462dc0 |
| advanced-cluster-security/rhacs-roxctl-rhel8@sha256:5edf971cc31a206b842a6647c75f42abfaa0fdbd6701d37bb4e5fb63b06bd82e |
| advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:c7b6ffa1f12a44b40ec30f103a03258b159c1d95190080f383fbbc4a0b76659e |
| advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:25fb3103eadda6fe64e696d4f31a8eef0c846faec7919feed2eb8e7b5751b465 |
| advanced-cluster-security/rhacs-scanner-rhel8@sha256:172b4962fc85f0ffec0c6e427110e0633ca2ac896d63a0be3b66d76e509b98ef |
| advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:d0c919940e15f72c00326905ada6fddda58ea667fa57209499d97b9fba37bdb6 |
| advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:3cfa4bc3673090d88fa71fe8abdd49b220c9dee3ed3ceb841292e6fe11ab5415 |
| advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:4582ffc4f6b41285da6e1d5c0c685d600130e64acb591b6f665c9c6a5f89961f |
x86_64
| advanced-cluster-security/rhacs-central-db-rhel8@sha256:c13f35c430feb94b21daba49681845be117b4d8e2a1dfe3ee1aec11fa81c741d |
| advanced-cluster-security/rhacs-collector-rhel8@sha256:074f80054ed763120f3e0b64eb86d0f5c84c9a63b294563d4717c5bf6cf348bc |
| advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:ebb2e07a4ed64ad0784041da8c10287a2e5f4801f14c688a9a622f57bdc2d82a |
| advanced-cluster-security/rhacs-main-rhel8@sha256:a7215f79e6685d9ad6fcd321b95d00fc1bb1e35225ca9ac43ea8d42e5791f38d |
| advanced-cluster-security/rhacs-operator-bundle@sha256:1b5d407a31ed7a2765d27bf256ab182bdbed72cb4d8d768f92e9facb04e8f70a |
| advanced-cluster-security/rhacs-rhel8-operator@sha256:a8b61467ca0a79ca0187342b08b5bc176723e790952a9433b1a827c09fef33c8 |
| advanced-cluster-security/rhacs-roxctl-rhel8@sha256:c15a2ae781dd64cca639b531538d5c6f6ba7e38ba8dcede47e10ea1b7d99203a |
| advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:38453292589d5cf949f048c46e4793fba8b09b06c3eb403b8cb7493b07cbd567 |
| advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:a147996f1a7f1c367914930d6a8008e517de724c2cf268b4996fe9b58aa44603 |
| advanced-cluster-security/rhacs-scanner-rhel8@sha256:324ec3e942897bc920e90380a7408fad371079c339410fa371c3bea17503e0e0 |
| advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:0ced63c064a928bb8b03f8eeb2a3760806d49dcc1c4c5afdce6c7ff262a905bf |
| advanced-cluster-security/rhacs-scanner-v4-db-rhel8@sha256:b3b2e13d538b087b15dd2d0afae92f81cac2445640a0f89083fbc47f942c13e0 |
| advanced-cluster-security/rhacs-scanner-v4-rhel8@sha256:323a3954ffa9b2aefc674b71764cb0779160db6c4ce6ff8ed23bfd2607cd98e4 |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.
