Red Hat Product Errata RHBA-2026:0352 - Bug Fix Advisory
Issued:
2026-01-08
Updated:
2026-01-08

RHBA-2026:0352 - Bug Fix Advisory

Synopsis

updated Red Hat JBoss Enterprise Application Platform 7.4 ELS on RHEL 8 container images

Type/Severity

Bug Fix Advisory

Topic

Updated Red Hat JBoss Enterprise Application Platform 7.4 ELS on RHEL 8 container images are now available

Description

The Red Hat JBoss Enterprise Application Platform 7.4 ELS on RHEL 8 container images have been updated to address the following security advisory: RHSA-2026:0241 (see References)

Users of Red Hat JBoss Enterprise Application Platform 7.4 ELS on RHEL 8 container images are advised to upgrade to these updated images, which contain backported patches to correct these security issues, fix these bugs and add these enhancements. Users of these images are also encouraged to rebuild all container images that depend on these images.

You can find images updated by this advisory in Red Hat Container Catalog (see References).

Solution

The Red Hat JBoss Enterprise Application Platform 7.4 ELS on RHEL 8 container images provided by this update can be downloaded from the Red Hat Container Registry at registry.access.redhat.com. Installation instructions for your platform are available at Red Hat Container Catalog (see References).

Dockerfiles and scripts should be amended either to refer to this new image specifically, or to the latest image generally.

Affected Products

  • JBoss Enterprise Application Platform 7.4 ELS 7.4 for RHEL 8 x86_64

Fixes

  • BZ - 2416904 - CVE-2025-64720 libpng: LIBPNG buffer overflow
  • BZ - 2416907 - CVE-2025-65018 libpng: LIBPNG heap buffer overflow
  • BZ - 2418711 - CVE-2025-66293 libpng: LIBPNG out-of-bounds read in png_image_read_composite

aarch64

jboss-eap-7/eap74-els-openjdk17-openshift-rhel8@sha256:131867f2518610fbc15c1e93ec68e0c294d1f68939645735e5bd3a88b7b9bb62
jboss-eap-7/eap74-els-openjdk17-runtime-openshift-rhel8@sha256:dfab3972d74589015a7464ee868ec2f3ee44feea12a334b9a86aaff64ce8bac7

ppc64le

jboss-eap-7/eap74-els-openjdk11-openshift-rhel8@sha256:aea3bcc6b749d5804df5d0ff6a153cd93ff644c30ce6281dc1f16b497ffef40a
jboss-eap-7/eap74-els-openjdk11-runtime-openshift-rhel8@sha256:0d2b3731f457fecc81b385e562feaa7c4e9ab49c2b354d8b6f95e1edf59b1485
jboss-eap-7/eap74-els-openjdk17-openshift-rhel8@sha256:aaa3df05cd16f6474ada6ce267c820684ab52a98e8e99e0e7aec131c48f79a15
jboss-eap-7/eap74-els-openjdk17-runtime-openshift-rhel8@sha256:eb0847b06fc5b0df50271685050fa3c453c31103dcf468156def484924b8cb7c

s390x

jboss-eap-7/eap74-els-openjdk11-openshift-rhel8@sha256:3845f8a9d49f37c55303c8d59f8057f487f14ef422876a7df8dab4f24b6a81cc
jboss-eap-7/eap74-els-openjdk11-runtime-openshift-rhel8@sha256:2aca6ba3fe479ac1e151fb1520f4ba8a25421ba99dfefdf1a6c7f9372c2af339
jboss-eap-7/eap74-els-openjdk17-openshift-rhel8@sha256:d7bfd4c5f1cd50d239e763891fe75771db43fcf2325523971e8898bb18ff1d35
jboss-eap-7/eap74-els-openjdk17-runtime-openshift-rhel8@sha256:002b62ab7a9e72084b56ea98ff711cdb414761853e04cd937f3407bfe66e4c8a

x86_64

jboss-eap-7/eap74-els-openjdk11-openshift-rhel8@sha256:ccaf926c9a725a86c5a85b42276dcc3e1bf1daec7d3fed5cf7db0d3e8dbbfa3a
jboss-eap-7/eap74-els-openjdk11-runtime-openshift-rhel8@sha256:22c914abc346230ec98dbf02d2ddfc2cc2d10dc679572a564147c3c4a4322f6d
jboss-eap-7/eap74-els-openjdk17-openshift-rhel8@sha256:1ceefc84e3d7cd53478c5e08b33f29fac9c7154dca97a7360fdf034328e0843c
jboss-eap-7/eap74-els-openjdk17-runtime-openshift-rhel8@sha256:0fe0c712486ec1cdf1977f5ed1e854d15701e9a082ee216842cd34745b2a5859
jboss-eap-7/eap74-els-openjdk8-openshift-rhel8@sha256:83b84e28c40ce0412bb6bafe86553ffcc3706a631c36ab8d46aedf21d5ac3e02
jboss-eap-7/eap74-els-openjdk8-runtime-openshift-rhel8@sha256:7133568855e80f00a39b005eae31c16ee27207de0324f002d2f0d3c94f413d31

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.