Red Hat Product Errata RHBA-2026:5253 - Bug Fix Advisory
Issued:
2026-03-23
Updated:
2026-03-23

RHBA-2026:5253 - Bug Fix Advisory

Synopsis

updated RHEL-9 based Middleware Containers container images

Type/Severity

Bug Fix Advisory

Topic

Updated RHEL-9 based Middleware Containers container images are now available

Description

The RHEL-9 based Middleware Containers container images have been updated to address the following security advisory: RHSA-2026:5080 (see References)

Users of RHEL-9 based Middleware Containers container images are advised to upgrade to these updated images, which contain backported patches to correct these security issues, fix these bugs and add these enhancements. Users of these images are also encouraged to rebuild all container images that depend on these images.

You can find images updated by this advisory in Red Hat Container Catalog (see References).

Solution

The RHEL-9 based Middleware Containers container images provided by this update can be downloaded from the Red Hat Container Registry at registry.access.redhat.com. Installation instructions for your platform are available at Red Hat Container Catalog (see References).

Dockerfiles and scripts should be amended either to refer to this new image specifically, or to the latest image generally.

Affected Products

  • Red Hat OpenShift Container Platform 4.12 for RHEL 8 x86_64
  • Red Hat OpenShift Container Platform 4.11 for RHEL 8 x86_64
  • Red Hat OpenShift Container Platform 4.10 for RHEL 8 x86_64
  • Red Hat OpenShift Container Platform 4.9 for RHEL 8 x86_64
  • Red Hat OpenShift Container Platform 4.8 for RHEL 8 x86_64
  • Red Hat OpenShift Container Platform 4.7 for RHEL 8 x86_64
  • Red Hat OpenShift Container Platform 4.6 for RHEL 8 x86_64
  • Red Hat OpenShift Container Platform 4.5 for RHEL 8 x86_64
  • Red Hat OpenShift Container Platform 4.4 for RHEL 8 x86_64
  • Red Hat OpenShift Container Platform 4.3 for RHEL 8 x86_64
  • Red Hat OpenShift Container Platform 4.2 for RHEL 8 x86_64
  • Red Hat OpenShift Container Platform 4.1 for RHEL 8 x86_64
  • Red Hat JBoss Middleware 1 x86_64
  • Red Hat OpenShift Container Platform for Power 4.10 for RHEL 8 ppc64le
  • Red Hat OpenShift Container Platform for Power 4.9 for RHEL 8 ppc64le
  • Red Hat OpenShift Container Platform for Power 4.8 for RHEL 8 ppc64le
  • Red Hat OpenShift Container Platform for Power 4.7 for RHEL 8 ppc64le
  • Red Hat OpenShift Container Platform for Power 4.6 for RHEL 8 ppc64le
  • Red Hat OpenShift Container Platform for Power 4.5 for RHEL 8 ppc64le
  • Red Hat OpenShift Container Platform for Power 4.4 for RHEL 8 ppc64le
  • Red Hat OpenShift Container Platform for Power 4.3 for RHEL 8 ppc64le
  • Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.10 for RHEL 8 s390x
  • Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.9 for RHEL 8 s390x
  • Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.8 for RHEL 8 s390x
  • Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.7 for RHEL 8 s390x
  • Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.6 for RHEL 8 s390x
  • Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.5 for RHEL 8 s390x
  • Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.4 for RHEL 8 s390x
  • Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.3 for RHEL 8 s390x
  • Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.2 for RHEL 8 s390x
  • Red Hat OpenShift Container Platform for ARM 64 4.10 aarch64

Fixes

  • BZ - 2446453 - CVE-2026-4111 libarchive: Infinite Loop Denial of Service in RAR5 Decompression via archive_read_data() in libarchive

aarch64

amq7-tech-preview/amq-broker-console-plugin-rhel9@sha256:4b7d3442b0815b8dc693d847dd4044447c43efe13735e9b606e1bce4af603c63
amq7-tech-preview/amq-broker-jolokia-api-server-rhel9@sha256:ffdb67deae56d74539188a43e34549f4fc2087e508b87c6a3e5464dc4d604028
amq7/amq-broker-init-rhel9@sha256:ed0c74bd6fbc92ec1612cad05be6f155b97ad5c352bb7494f845f1dd6297d8e1
amq7/amq-broker-rhel9@sha256:b64fccaad61b43faecb150b4f56f5d505146ecc8910a2835938ea186c0a7b350
amq7/amq-broker-rhel9-operator@sha256:015b325c7e4cf759cbc8e093a7a900a59546688a322f1260e15aa29aea9fb191

ppc64le

amq7-tech-preview/amq-broker-console-plugin-rhel9@sha256:ef663b9d9e862b1f325874486dd3f80ab923ad025fdbf03330dde7583bb3a4f2
amq7-tech-preview/amq-broker-jolokia-api-server-rhel9@sha256:e76bf245c2403704d8fc24f367df4e3cf9a1c428a04b8c7a19a7770d99b6cf6e
amq7/amq-broker-init-rhel9@sha256:d83802670f962eaf292c5c15c8ee5d1c4dc37657b527097ed959795d05a0bfb8
amq7/amq-broker-rhel9@sha256:6ee55287ee0e56ce1ee6a69c5cdee63631b624708a3611fe186284f37fae9114
amq7/amq-broker-rhel9-operator@sha256:38d778ff8ca04fd0cabf0e0ebd14af402038426ca2161a78f1fe1a30f3f3515e

s390x

amq7-tech-preview/amq-broker-console-plugin-rhel9@sha256:682f65e446a60d5bbfa254dad7a481cf3b8c781bce7fb255e5fe92babe60be6b
amq7-tech-preview/amq-broker-jolokia-api-server-rhel9@sha256:d1f56cf6dc0a943a9ac317b5e12aebab393975d441e2318264ccf49c543c5dda
amq7/amq-broker-init-rhel9@sha256:6d94005fa65cd1bd3bb888518d9bb65618c9499bef4098a5be9532804ec79d76
amq7/amq-broker-rhel9@sha256:471e5e437576b8b13acd30db1c0422f2956a0944f2d3a03c0e5fc3807f6011b3
amq7/amq-broker-rhel9-operator@sha256:a5899f6450f173649f7da586ec2dad746cc1779f7e153929fa5da721909d4a0d

x86_64

amq7-tech-preview/amq-broker-console-plugin-rhel9@sha256:34472ab6d2e7d60a64a00eb0138794e808fc9ac59cfc2b6bea7399a487f09e2d
amq7-tech-preview/amq-broker-jolokia-api-server-rhel9@sha256:86afa47583f8871f9664a074542bf0704cba71c9179afc78f6951e540027d4cd
amq7/amq-broker-init-rhel9@sha256:5ff709a118045b1ad2b34273758fe0fc4d0da5e80022a1e11c35a86002660062
amq7/amq-broker-rhel9@sha256:264e14abf94327b7d47f7555342b897b63cc6d25af15a3aba550b168b5087b59
amq7/amq-broker-rhel9-operator@sha256:438cd21da5c527df54f33dc4a8728293b5053184644c13fcde7e09f2341a7e57

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.