Issued:: 2024-01-16
Updated:: 2024-01-16

RHSA-2024:0216 - Security Advisory

Overview
Updated Packages

Synopsis

Moderate: Red Hat OpenStack Platform 17.1 (openstack-tripleo-common) security update

Type/Severity

Security Advisory: Moderate

Red Hat Insights patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for openstack-tripleo-common is now available for Red Hat
OpenStack Platform 17.1 (Wallaby).

Red Hat Product Security has rated this update as having a security impact
of Moderate. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.

Description

This update affects a Python library for code used by TripleO projects.

Security Fix(es):

sudo privilege escalation vulnerability (CVE-2022-38060)

For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page listed in the References section.

Solution

For details on how to apply this update, which includes the changes
described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

Red Hat OpenStack 17.1 for RHEL 9 x86_64

Fixes

BZ - 2124758 - CVE-2022-38060 openstack/kolla: sudo privilege escalation vulnerability
BZ - 2233560 - [hackfest] UserWarning: You have a configured API_VERSION with 'latest' in it. In the context of openstacksdk this doesn't make any sense
BZ - 2234820 - [hackfest] After deploying the OSP Director, the ironic_pxe_http container is in unhealthy state

CVEs

CVE-2022-38060

References

https://access.redhat.com/security/updates/classification/#moderate

Note: More recent versions of these packages may be available. Click a package name for more details.

Red Hat OpenStack 17.1 for RHEL 9

SRPM
openstack-tripleo-common-15.4.1-17.1.20230927010819.el9ost.src.rpm	SHA-256: c5f8d0d5a88c45926bb0575e61ede0d2a48de72959ca954246524976f3775be4
x86_64
openstack-tripleo-common-15.4.1-17.1.20230927010819.el9ost.noarch.rpm	SHA-256: 051f6cc0c61efe73e68c3c637f31146b0c4129bd6fb66f3791532081a7c06883
openstack-tripleo-common-container-base-15.4.1-17.1.20230927010819.el9ost.noarch.rpm	SHA-256: b2f87016e7046f27aa38885f404dfe67c6321bae09751428076cf8370b46211d
openstack-tripleo-common-containers-15.4.1-17.1.20230927010819.el9ost.noarch.rpm	SHA-256: df3bf06c8fc49522c25def4fe37707f1763b6f15417051dd943324b50d0e401c
openstack-tripleo-common-devtools-15.4.1-17.1.20230927010819.el9ost.noarch.rpm	SHA-256: aa23942449eca8ea5f4715ffe2ce94893a6343959403461c5e732ed2561b44d1
python3-tripleo-common-15.4.1-17.1.20230927010819.el9ost.noarch.rpm	SHA-256: fc3c31998261cf3a3199a2293c2e5cca51a609f79fc5fd856e54dde3548038fb

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation