Skip to navigation Skip to main content

Utilities

  • Subscriptions
  • Downloads
  • Red Hat Console
  • Get Support
Red Hat Customer Portal
  • Subscriptions
  • Downloads
  • Red Hat Console
  • Get Support
  • Products

    Top Products

    • Red Hat Enterprise Linux
    • Red Hat OpenShift
    • Red Hat Ansible Automation Platform
    All Products

    Downloads and Containers

    • Downloads
    • Packages
    • Containers

    Top Resources

    • Documentation
    • Product Life Cycles
    • Product Compliance
    • Errata
  • Knowledge

    Red Hat Knowledge Center

    • Knowledgebase Solutions
    • Knowledgebase Articles
    • Customer Portal Labs
    • Errata

    Top Product Docs

    • Red Hat Enterprise Linux
    • Red Hat OpenShift
    • Red Hat Ansible Automation Platform
    All Product Docs

    Training and Certification

    • About
    • Course Index
    • Certification Index
    • Skill Assessment
  • Security

    Red Hat Product Security Center

    • Security Updates
    • Security Advisories
    • Red Hat CVE Database
    • Errata

    References

    • Security Bulletins
    • Security Measurement
    • Severity Ratings
    • Security Data

    Top Resources

    • Security Labs
    • Backporting Policies
    • Security Blog
  • Support

    Red Hat Support

    • Support Cases
    • Troubleshoot
    • Get Support
    • Contact Red Hat Support

    Red Hat Community Support

    • Customer Portal Community
    • Community Discussions
    • Red Hat Accelerator Program

    Top Resources

    • Product Life Cycles
    • Customer Portal Labs
    • Red Hat JBoss Supported Configurations
    • Red Hat Insights
Or troubleshoot an issue.

Select Your Language

  • English
  • Français
  • 한국어
  • 日本語
  • 中文 (中国)

Infrastructure and Management

  • Red Hat Enterprise Linux
  • Red Hat Satellite
  • Red Hat Subscription Management
  • Red Hat Insights
  • Red Hat Ansible Automation Platform

Cloud Computing

  • Red Hat OpenShift
  • Red Hat OpenStack Platform
  • Red Hat OpenShift
  • Red Hat OpenShift AI
  • Red Hat OpenShift Dedicated
  • Red Hat Advanced Cluster Security for Kubernetes
  • Red Hat Advanced Cluster Management for Kubernetes
  • Red Hat Quay
  • Red Hat OpenShift Dev Spaces
  • Red Hat OpenShift Service on AWS

Storage

  • Red Hat Gluster Storage
  • Red Hat Hyperconverged Infrastructure
  • Red Hat Ceph Storage
  • Red Hat OpenShift Data Foundation

Runtimes

  • Red Hat Runtimes
  • Red Hat JBoss Enterprise Application Platform
  • Red Hat Data Grid
  • Red Hat JBoss Web Server
  • Red Hat build of Keycloak
  • Red Hat support for Spring Boot
  • Red Hat build of Node.js
  • Red Hat build of Quarkus

Integration and Automation

  • Red Hat Application Foundations
  • Red Hat Fuse
  • Red Hat AMQ
  • Red Hat 3scale API Management
All Products
Red Hat Product Errata RHSA-2023:1953 - Security Advisory
Issued:
2023-04-26
Updated:
2023-04-26

RHSA-2023:1953 - Security Advisory

  • Overview
  • Updated Images

Synopsis

Moderate: Logging Subsystem 5.6.5 - Red Hat OpenShift security update

Type/Severity

Security Advisory: Moderate

Topic

Logging Subsystem 5.6.5 - Red Hat OpenShift

Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

Logging Subsystem 5.6.5 - Red Hat OpenShift

Security Fix(es):

  • rubygem-rack: denial of service in header parsing (CVE-2023-27539)
  • rubygem-activesupport: Possible XSS in SafeBuffer#bytesplice (CVE-2023-28120)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

For details on how to apply this update, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • Logging Subsystem for Red Hat OpenShift for ARM 64 5 for RHEL 8 aarch64
  • Logging Subsystem for Red Hat OpenShift 5 for RHEL 8 x86_64
  • Logging Subsystem for Red Hat OpenShift for IBM Power, little endian 5 for RHEL 8 ppc64le
  • Logging Subsystem for Red Hat OpenShift for IBM Z and LinuxONE 5 for RHEL 8 s390x

Fixes

  • BZ - 2179637 - CVE-2023-28120 rubygem-activesupport: Possible XSS in SafeBuffer#bytesplice
  • BZ - 2179649 - CVE-2023-27539 rubygem-rack: denial of service in header parsing
  • LOG-3419 - Kibana Filtering not working with filters that have `/` i them
  • LOG-3750 - Error message is not helpful when querying Loki
  • LOG-3583 - [Logging 5.6] Logs view custom time range does not work correctly when time is set from the drop down
  • LOG-3480 - Loki Query fails due to the limit of 5120 on namespace character
  • LOG-4008 - [release-5.6] Failed to create memberlist no private IP address found

CVEs

  • CVE-2022-4269
  • CVE-2022-4378
  • CVE-2023-0266
  • CVE-2023-0361
  • CVE-2023-0386
  • CVE-2023-27539
  • CVE-2023-28120

References

  • https://access.redhat.com/security/updates/classification/#moderate

aarch64

openshift-logging/cluster-logging-rhel8-operator@sha256:731567ee7f2c91d248d3980a4fe5cf3e3b19c95ac028ebc4ba9051f940539546
openshift-logging/elasticsearch-proxy-rhel8@sha256:e2f28dca1a754623359b704a29e3ef4fe31cdb4e5816ed8cb9cc931f62aa74e5
openshift-logging/elasticsearch-rhel8-operator@sha256:f5a7733e18054f11629816d73507636fbf89c82dced718721b50aab18871a840
openshift-logging/elasticsearch6-rhel8@sha256:555f6e29451c73b5534f7c5f674a11bd46052fc9c4e0ab91c19c4f79acf799e9
openshift-logging/eventrouter-rhel8@sha256:0d97eb7ba68c74cec9b8cb5da3a0663c2645486f74b02261cb40276f3342d93b
openshift-logging/fluentd-rhel8@sha256:0322877e7e70debca22bac62e0d2a1f91cdebd4bf3bf96033b78e98d09bb2480
openshift-logging/kibana6-rhel8@sha256:3e0895b3567f900a8a0e39f8cf60280db2dbd057c9599e885a7de98e4e80b166
openshift-logging/log-file-metric-exporter-rhel8@sha256:58e588e059f62fe7b26a7bcd4567ea8c6903e694df86ea708f9bbae149b598ff
openshift-logging/logging-curator5-rhel8@sha256:f6bcf32ebc3ba8f15ae1c4b2df8c8659187eba1b27f18b28bd5778530b407797
openshift-logging/logging-loki-rhel8@sha256:e5d15c23b8c9c34be899041bcebd76a20054775dc841b2f807ee8b9a86f7d2f5
openshift-logging/logging-view-plugin-rhel8@sha256:94c42f3bbaa631c0f5fb3d45b547fc4f75a7fbe13960f98828f1aed709ba55f7
openshift-logging/loki-rhel8-operator@sha256:655ba76eb2429aaa6676259d17144ff2961045a59bc02a0da1865d93f2f3abaa
openshift-logging/lokistack-gateway-rhel8@sha256:448bdb0b727d4c0e643aad3259022b895b71ea054d961eca211a905d1a38ecd0
openshift-logging/opa-openshift-rhel8@sha256:dc23da77be96ddd671c80c3f8a21f78c0c7a930fbc4f9a0de8e80c435ef783d8
openshift-logging/vector-rhel8@sha256:7e6849449e3c2550679720a0b8c21a8cfd0fc34fa95e9b729d2102c53996fb32

ppc64le

openshift-logging/cluster-logging-rhel8-operator@sha256:233b5898005aa4bb4aa50b8efc96ef2f02b455bbe59a399b85ed8f00d520f1c7
openshift-logging/elasticsearch-proxy-rhel8@sha256:7f85c4998d8ef0f27e1bfece2df91f3cab3489f7e5deced405ab4a3aae9b28a1
openshift-logging/elasticsearch-rhel8-operator@sha256:d978206d2447c3517f8412fbdada672dd13c8baf76466ff972f5a347eeabfa99
openshift-logging/elasticsearch6-rhel8@sha256:175a6b8f6435fe3d1ca8db0b4e9398b09db9b502bf17dd7d309eaa84cada7df2
openshift-logging/eventrouter-rhel8@sha256:235deb07313141dd5934b92b19a95b7485e998242998f400a7a87affc0bf16aa
openshift-logging/fluentd-rhel8@sha256:5c47d4c63b92680903171598e05db75edeafce751dc7548987804b72077ce550
openshift-logging/kibana6-rhel8@sha256:eabd2451a3668ddffacdce6d3b72863fc093a8ad22592f550a9009b021eb21ca
openshift-logging/log-file-metric-exporter-rhel8@sha256:86f47139be2ec7ee5391f4d54f00d697126d3a0128b9a22bb93fd704c03fc4da
openshift-logging/logging-curator5-rhel8@sha256:bfea82efdd8c0a2ffdec93e582394026ba6f4086ef039c51d293080232f9b2f1
openshift-logging/logging-loki-rhel8@sha256:55b64a6a5cb71c908a8962e7a757a064619c9f8aa0080fc584db92674a6d4ec7
openshift-logging/logging-view-plugin-rhel8@sha256:a2d22864fa5c2350bb4d7eeea8396c645c2a8247d85de55069abf6c93e15eaff
openshift-logging/loki-rhel8-operator@sha256:ab42c49b2bd600c500b226bc63349a7eef490f75d6dddf1812721a7579879e4f
openshift-logging/lokistack-gateway-rhel8@sha256:3041db16c26cdb4f8c88e1963ab535c170bd5dffa2b452ca3a08ce6e6d2a2500
openshift-logging/opa-openshift-rhel8@sha256:511c75ee2a60bed854dc3708886a6d600625cde6b78849d0cbce3ceb1cceb068
openshift-logging/vector-rhel8@sha256:17b0e15e92527bfb45aadbe13378b262a18bc06b568efeb16a1f2adcd0f31ec3

s390x

openshift-logging/cluster-logging-rhel8-operator@sha256:5faffa3624e95ae19104be20e2cb69ab9719ad5fbc12b8370618e7d89c497df5
openshift-logging/elasticsearch-proxy-rhel8@sha256:3e6e31a25c940cd0b0376df0640648ff357c3842307ea1e4dda99bfc2d4d6fe7
openshift-logging/elasticsearch-rhel8-operator@sha256:53c81d3e6bcb29343e1cfe4c58abb02126fc968f3e2af4d21d0488190888a879
openshift-logging/elasticsearch6-rhel8@sha256:6bfb202f2336441f522ae26f59a413d7fbda41b781ca4db46ff99ea89dd9ff8b
openshift-logging/eventrouter-rhel8@sha256:67be5df93f4215936f57cefd1e5e00645df41b83c0de38f1111b5ed7303acf4a
openshift-logging/fluentd-rhel8@sha256:2e491ee9d43964cc53a8ebd1ac92507e9af6d8a39649594d5c4e991067d6ca99
openshift-logging/kibana6-rhel8@sha256:9ba17d38faba70354f5a890409189a12bf5e0d7aadfb4698fafb37e9cb8d6d00
openshift-logging/log-file-metric-exporter-rhel8@sha256:9034be9d22b0c2a9918fa79c37854b62099b32d32586380f455f435aa139ab86
openshift-logging/logging-curator5-rhel8@sha256:3c1728139dc88aa75ee088fe2d9e4917ca5062951cf5aa9d4ac69f42f4e6683c
openshift-logging/logging-loki-rhel8@sha256:3e02ee8dfb296ad9261512a268fe42744120e262b2915c50bdd094bd8cf9ca1f
openshift-logging/logging-view-plugin-rhel8@sha256:149c2037d62c50230befb6873e2b3e4daba573adccc8049eb7677600a63cb936
openshift-logging/loki-rhel8-operator@sha256:e8fcf0b219be91fa15ec5cc8f83d5874b9d0a3482dbd1e90a5e05878b6522596
openshift-logging/lokistack-gateway-rhel8@sha256:e40c1ed15366fa6e48141e69b66264f760cbd9a8919339c3817a90b5f1620bdb
openshift-logging/opa-openshift-rhel8@sha256:5167a7002dcedb6d27b137b7ff0958a8a4043706d4366ce6fff01bd49168685d
openshift-logging/vector-rhel8@sha256:658029bec140b359a87bb9266a88572550f589cbcbe0d7e5ce8c145ee33172cd

x86_64

openshift-logging/cluster-logging-operator-bundle@sha256:f1a9fce2a0474fffabc36e62b3208e333a2154b0c75b8674f0264c0e77faf011
openshift-logging/cluster-logging-rhel8-operator@sha256:6f77858ae3de7f44cebede1ce239fd6d21e5299c22931e3500215f3d9190da1b
openshift-logging/elasticsearch-operator-bundle@sha256:afea2897dd74235fa62bf34821441819ed8edbee121a053e6001c046482b4573
openshift-logging/elasticsearch-proxy-rhel8@sha256:45e20088c3ff0abfeeb0f7530278457eef2ff45122393c5bc75b126ad64dfcd3
openshift-logging/elasticsearch-rhel8-operator@sha256:507b0bd5d403d57e79bf0c92699d8a3b2d738c0cbb564384469134e7bd8735d2
openshift-logging/elasticsearch6-rhel8@sha256:9644f26adbc31d149e652189f5c7832608862fc3db31172d49b2c2ac69e06b62
openshift-logging/eventrouter-rhel8@sha256:68a062de1e69875e3d6bd77ec356a50c12c228dbbc4a400bc940335c5b5e2a73
openshift-logging/fluentd-rhel8@sha256:2fa5ad6177cfcda351c13e8478a4ab5c17a428aee75f089c8d0ca8a4505d3ba8
openshift-logging/kibana6-rhel8@sha256:483fe327c1794582cf74e5b15821b647210eda732e8339a88ecafb183dfab479
openshift-logging/log-file-metric-exporter-rhel8@sha256:4929cd6fa0a37120dfa2361750d51138a223fd64116c96629e47cc3e5d1e971e
openshift-logging/logging-curator5-rhel8@sha256:40e6c524006c8f7cb0ca212a4f4b19083df527da944dea762aac60e68d73ecf9
openshift-logging/logging-loki-rhel8@sha256:9f0a0a82641750924a03fdb68e9755dc0e770f50826b44e8c79183b7706bf0c1
openshift-logging/logging-view-plugin-rhel8@sha256:4da268c6d5e321fb24493b008dea642438d0379ece7f990b1e5aea7116a8f03c
openshift-logging/loki-operator-bundle@sha256:474d77067fc0d2df2137c4009c9d1f9bc50084fa4d51818be405826bc55c0d96
openshift-logging/loki-rhel8-operator@sha256:6f2b591a8b6421e72fde418c8b8a76a6de6d9b72e22a0a57d3096d5efa82343b
openshift-logging/lokistack-gateway-rhel8@sha256:2de0f9cc91c4fb80cdcb672746f46e8cad9f87ba59b1136438f079b9db1f3158
openshift-logging/opa-openshift-rhel8@sha256:cb430fc37545c40db97f0b9f8b9b5fb8ec0f2ce9318c80850f81eef8019117b8
openshift-logging/vector-rhel8@sha256:f228c45422941ef7435f4337744e71844a6c843cb97f61ff74f3752ce5a9fda4

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Red Hat LinkedIn YouTube Facebook X, formerly Twitter

Quick Links

  • Downloads
  • Subscriptions
  • Support Cases
  • Customer Service
  • Product Documentation

Help

  • Contact Us
  • Customer Portal FAQ
  • Log-in Assistance

Site Info

  • Trust Red Hat
  • Browser Support Policy
  • Accessibility
  • Awards and Recognition
  • Colophon

Related Sites

  • redhat.com
  • developers.redhat.com
  • connect.redhat.com
  • cloud.redhat.com

Red Hat legal and privacy links

  • About Red Hat
  • Jobs
  • Events
  • Locations
  • Contact Red Hat
  • Red Hat Blog
  • Inclusion at Red Hat
  • Cool Stuff Store
  • Red Hat Summit
© 2025 Red Hat

Red Hat legal and privacy links

  • Privacy statement
  • Terms of use
  • All policies and guidelines
  • Digital accessibility