Skip to navigation Skip to main content

Utilities

  • Subscriptions
  • Downloads
  • Red Hat Console
  • Get Support
Red Hat Customer Portal
  • Subscriptions
  • Downloads
  • Red Hat Console
  • Get Support
  • Products

    Top Products

    • Red Hat Enterprise Linux
    • Red Hat OpenShift
    • Red Hat Ansible Automation Platform
    All Products

    Downloads and Containers

    • Downloads
    • Packages
    • Containers

    Top Resources

    • Documentation
    • Product Life Cycles
    • Product Compliance
    • Errata
  • Knowledge

    Red Hat Knowledge Center

    • Knowledgebase Solutions
    • Knowledgebase Articles
    • Customer Portal Labs
    • Errata

    Top Product Docs

    • Red Hat Enterprise Linux
    • Red Hat OpenShift
    • Red Hat Ansible Automation Platform
    All Product Docs

    Training and Certification

    • About
    • Course Index
    • Certification Index
    • Skill Assessment
  • Security

    Red Hat Product Security Center

    • Security Updates
    • Security Advisories
    • Red Hat CVE Database
    • Errata

    References

    • Security Bulletins
    • Security Measurement
    • Severity Ratings
    • Security Data

    Top Resources

    • Security Labs
    • Backporting Policies
    • Security Blog
  • Support

    Red Hat Support

    • Support Cases
    • Troubleshoot
    • Get Support
    • Contact Red Hat Support

    Red Hat Community Support

    • Customer Portal Community
    • Community Discussions
    • Red Hat Accelerator Program

    Top Resources

    • Product Life Cycles
    • Customer Portal Labs
    • Red Hat JBoss Supported Configurations
    • Red Hat Insights
Or troubleshoot an issue.

Select Your Language

  • English
  • Français
  • 한국어
  • 日本語
  • 中文 (中国)

Infrastructure and Management

  • Red Hat Enterprise Linux
  • Red Hat Satellite
  • Red Hat Subscription Management
  • Red Hat Insights
  • Red Hat Ansible Automation Platform

Cloud Computing

  • Red Hat OpenShift
  • Red Hat OpenStack Platform
  • Red Hat OpenShift
  • Red Hat OpenShift AI
  • Red Hat OpenShift Dedicated
  • Red Hat Advanced Cluster Security for Kubernetes
  • Red Hat Advanced Cluster Management for Kubernetes
  • Red Hat Quay
  • Red Hat OpenShift Dev Spaces
  • Red Hat OpenShift Service on AWS

Storage

  • Red Hat Gluster Storage
  • Red Hat Hyperconverged Infrastructure
  • Red Hat Ceph Storage
  • Red Hat OpenShift Data Foundation

Runtimes

  • Red Hat Runtimes
  • Red Hat JBoss Enterprise Application Platform
  • Red Hat Data Grid
  • Red Hat JBoss Web Server
  • Red Hat build of Keycloak
  • Red Hat support for Spring Boot
  • Red Hat build of Node.js
  • Red Hat build of Quarkus

Integration and Automation

  • Red Hat Application Foundations
  • Red Hat Fuse
  • Red Hat AMQ
  • Red Hat 3scale API Management
All Products
Red Hat Product Errata RHSA-2023:3415 - Security Advisory
Issued:
2023-05-31
Updated:
2023-05-31

RHSA-2023:3415 - Security Advisory

  • Overview
  • Updated Images

Synopsis

Important: ACS 4.0 enhancement and security update

Type/Severity

Security Advisory: Important

Topic

Updated images are now available for Red Hat Advanced Cluster Security (RHACS). The updated image includes security and bug fixes.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

This release of RHACS 4.0.2 includes security fixes for CVE-2023-24540, CVE-2023-24539 and CVE-2023-29400 by building RHACS with updated Golang builder. If you are using an earlier version of RHACS 4.0, you are advised to upgrade to this patch release 4.0.2.

Security Issue(s) fixed:

  • golang: html/template: improper sanitization of CSS values (CVE-2023-24539)
  • golang: html/template: improper handling of JavaScript whitespace (CVE-2023-24540)
  • golang: html/template: improper handling of empty HTML attributes (CVE-2023-29400)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • Red Hat Advanced Cluster Security for Kubernetes 4 x86_64
  • Red Hat Advanced Cluster Security for Kubernetes for IBM Z and LinuxONE 4 s390x
  • Red Hat Advanced Cluster Security for Kubernetes for IBM Power, little endian 4 ppc64le

Fixes

  • BZ - 2196026 - CVE-2023-24539 golang: html/template: improper sanitization of CSS values
  • BZ - 2196027 - CVE-2023-24540 golang: html/template: improper handling of JavaScript whitespace
  • BZ - 2196029 - CVE-2023-29400 golang: html/template: improper handling of empty HTML attributes
  • ROX-17407 - Release RHACS 4.0.2

CVEs

  • CVE-2023-24539
  • CVE-2023-24540
  • CVE-2023-29400

References

  • https://access.redhat.com/security/updates/classification/#important
  • https://docs.openshift.com/acs/4.0/release_notes/40-release-notes.html

ppc64le

advanced-cluster-security/rhacs-central-db-rhel8@sha256:9b03aca946f78e31e1a4e0536ac5c5871df33ce1d73bde19e62f12513e1e9bfe
advanced-cluster-security/rhacs-collector-rhel8@sha256:d67c6b1abce362da0b158c4fafb6bae1ca5070ac32ebfc9aa16be475ba223690
advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:bb2e8930ec4ab4655e79a71b0ff2fbe393599cc93c01505f940f4377a7e59883
advanced-cluster-security/rhacs-main-rhel8@sha256:382978f67464db840edabc8f33ec517d006712aa4b71f118fcf0dea6edaee313
advanced-cluster-security/rhacs-operator-bundle@sha256:5d72b09f497d323a6e22931941efe2c3c45bd7018e84ca3e2062f1f890624e9b
advanced-cluster-security/rhacs-rhel8-operator@sha256:a32d3561c4c42fe4787857b4c5743d892323c947c1f0b34ce03d3f4dd383a2f4
advanced-cluster-security/rhacs-roxctl-rhel8@sha256:feabb4aa3cd69446f4a85723d63e17db484f07c73f2f02a6562b9cc0558e3e1e
advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:728048a303c69ac524c4738808755f4cbd1a391bcbce052f9d777e97942f5959
advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:bee2c0243285c9197bdeea46a00cc15867bb439e7c2dc830e3b1501d0c87e5e3
advanced-cluster-security/rhacs-scanner-rhel8@sha256:28dda88671e98ef6c88c3bb3989021fc3650247c10514794de678f0f3822cede
advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:58dc77ff1b7cc048003e8eb6fe0ec7a7e0997de5befcbcfcf30b779fb3680e91

s390x

advanced-cluster-security/rhacs-central-db-rhel8@sha256:565a01da99320c02437b0bbdaffa35bc8036f09acfcb11410c8222df2a9ac0f2
advanced-cluster-security/rhacs-collector-rhel8@sha256:4add4b0542fc1434a8d11a785ca57244f549a4eacf492ef728193e2f63143159
advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:64a11074a4333a50079ac98cf842c2feaa4226d5f964c171a342d252f42e4438
advanced-cluster-security/rhacs-main-rhel8@sha256:0efd32861819fac6fcdb611070c30efbbce1d34eaa975c48f793fd7b260d822c
advanced-cluster-security/rhacs-operator-bundle@sha256:40407c0e28258f463e0e50c2e5d00570e2558c7b34da6c9cb44939c2dd7efba9
advanced-cluster-security/rhacs-rhel8-operator@sha256:0fbd642c16e0b4e60294c288cc2e69f54bab0fff2c02556272e2f7b076cff6a8
advanced-cluster-security/rhacs-roxctl-rhel8@sha256:2dacc084a16471146386295bbb717aa3bf7c6f0cdd1c481fea08ec7795e04731
advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:172e8395fd0a6515bda05645536fa9f84d80c11c3ab85643d2910db60faf40d6
advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:c4838ac12d5c6d5305d118c98ca008c47b32d5325dedb98c40b5e2a294de94d6
advanced-cluster-security/rhacs-scanner-rhel8@sha256:04239174dd2fcf854f3ce65b313f114e39b556ddb92e2a5a3fe807e9d315af95
advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:4fe44befb2fbf3e945de83ae9b5a39d85627d62e986abc9a8134a2c108e8eb08

x86_64

advanced-cluster-security/rhacs-central-db-rhel8@sha256:ec389417464ad3fc8d729a1c9b73d7be39949bb7996719b03203b2cc78413376
advanced-cluster-security/rhacs-collector-rhel8@sha256:14e0072862fd56196b719a1587bf54e525b7f19f6790c9009ec23dcf9a04d1a9
advanced-cluster-security/rhacs-collector-slim-rhel8@sha256:21fb603cbe41821c395b20adf95321b03a93a9eddfaa82f6abd87d181a974c39
advanced-cluster-security/rhacs-main-rhel8@sha256:93d9310d3e4960e3b9028310b02baa0ce31ab26b1f2579a91951140ef7dcfeff
advanced-cluster-security/rhacs-operator-bundle@sha256:7e08088dc72f668b36f67b18c2ec2cbdb621d547f00699b3fb8d6de0ccbaec57
advanced-cluster-security/rhacs-rhel8-operator@sha256:44cfa2761d81d4252299f136c244a7c80c674465d718a38d11e0422e3c5414a5
advanced-cluster-security/rhacs-roxctl-rhel8@sha256:3076a8bca874bda3105218f6572ce745e8d820ad1088ecc22982efcd2f3945b7
advanced-cluster-security/rhacs-scanner-db-rhel8@sha256:f6f5c1b86e199af5beaf1820c298f21fddab68cd6adb401d674a4e1724ec457f
advanced-cluster-security/rhacs-scanner-db-slim-rhel8@sha256:dbbfc35b869db36a8075e4476fc80d3e5020dd335618e76998c47f6501dd97cc
advanced-cluster-security/rhacs-scanner-rhel8@sha256:dc2bcdfa399edb9855c77f5e9f4c6baeae162234fbf136a129ff60fc1805927a
advanced-cluster-security/rhacs-scanner-slim-rhel8@sha256:3e7c648bbd6b1a1afe10fd3f55de41d43a3ce7f03035e7816f232db54042e65a

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Red Hat X (formerly Twitter)

Quick Links

  • Downloads
  • Subscriptions
  • Support Cases
  • Customer Service
  • Product Documentation

Help

  • Contact Us
  • Customer Portal FAQ
  • Log-in Assistance

Site Info

  • Trust Red Hat
  • Browser Support Policy
  • Accessibility
  • Awards and Recognition
  • Colophon

Related Sites

  • redhat.com
  • developers.redhat.com
  • connect.redhat.com
  • cloud.redhat.com

Red Hat legal and privacy links

  • About Red Hat
  • Jobs
  • Events
  • Locations
  • Contact Red Hat
  • Red Hat Blog
  • Inclusion at Red Hat
  • Cool Stuff Store
  • Red Hat Summit
© 2025 Red Hat, Inc.

Red Hat legal and privacy links

  • Privacy statement
  • Terms of use
  • All policies and guidelines
  • Digital accessibility