Issued:: 2024-01-17
Updated:: 2024-01-17

RHSA-2024:0268 - Security Advisory

Overview
Updated Images

Synopsis

Low: Logging Subsystem 5.7.10 - Red Hat OpenShift security update

Type/Severity

Security Advisory: Low

Topic

Low: Logging Subsystem 5.7.10 - Red Hat OpenShift security update

Red Hat Product Security has rated this update as having a security impact of low. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

Logging Subsystem 5.7.10 - Red Hat OpenShift

Security Fix(es):

CVE-2023-38037 rubygem-activesupport: File Disclosure of Locally Encrypted Files

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

For details on how to apply this update, refer to:

https://access.redhat.com/articles/11258

Affected Products

Logging Subsystem for Red Hat OpenShift for ARM 64 5 for RHEL 8 aarch64
Logging Subsystem for Red Hat OpenShift 5 for RHEL 8 x86_64
Logging Subsystem for Red Hat OpenShift for IBM Power, little endian 5 for RHEL 8 ppc64le
Logging Subsystem for Red Hat OpenShift for IBM Z and LinuxONE 5 for RHEL 8 s390x

Fixes

BZ - 2236261 - CVE-2023-38037 rubygem-activesupport: File Disclosure of Locally Encrypted Files
LOG-4891 - [release-5.7] lokistack ruler Error while dialing IPv6

CVEs

CVE-2007-4559
CVE-2021-43975
CVE-2022-3594
CVE-2022-3640
CVE-2022-4285
CVE-2022-4744
CVE-2022-28388
CVE-2022-38457
CVE-2022-40133
CVE-2022-40982
CVE-2022-41862
CVE-2022-42895
CVE-2022-45869
CVE-2022-45887
CVE-2022-48337
CVE-2022-48339
CVE-2023-0458
CVE-2023-0590
CVE-2023-0597
CVE-2023-1073
CVE-2023-1074
CVE-2023-1075
CVE-2023-1079
CVE-2023-1118
CVE-2023-1206
CVE-2023-1252
CVE-2023-1382
CVE-2023-1855
CVE-2023-1989
CVE-2023-1998
CVE-2023-2513
CVE-2023-3138
CVE-2023-3141
CVE-2023-3161
CVE-2023-3212
CVE-2023-3268
CVE-2023-3446
CVE-2023-3609
CVE-2023-3611
CVE-2023-3772
CVE-2023-3817
CVE-2023-4016
CVE-2023-4128
CVE-2023-4132
CVE-2023-4155
CVE-2023-4206
CVE-2023-4207
CVE-2023-4208
CVE-2023-4641
CVE-2023-4732
CVE-2023-5678
CVE-2023-22745
CVE-2023-23455
CVE-2023-26545
CVE-2023-28328
CVE-2023-28772
CVE-2023-30456
CVE-2023-31084
CVE-2023-31436
CVE-2023-31486
CVE-2023-33203
CVE-2023-33951
CVE-2023-33952
CVE-2023-35823
CVE-2023-35824
CVE-2023-35825
CVE-2023-38037
CVE-2024-0443

References

https://access.redhat.com/security/updates/classification/#low

aarch64

openshift-logging/cluster-logging-rhel8-operator@sha256:cb4d4c47000da1e52a409ccabca133e345bcecde347f86cf4ba6bee2ec7670bb

openshift-logging/elasticsearch-proxy-rhel8@sha256:b4d9de9c4703c41b9a8b48f2b6992a95560ebe5287ca8978d58f7a1448eabdb5

openshift-logging/elasticsearch-rhel8-operator@sha256:0a8d7973f93e362a8069699621bfe272719f7f3bc95aa80747c7d976e08d1300

openshift-logging/elasticsearch6-rhel8@sha256:3fa715b8c2a7621685b405cbd9f0fcd90fd32646609f0609591abf2f5c94c367

openshift-logging/eventrouter-rhel8@sha256:4ad6ab7dd1bbe87bd76bc864767a799ff27dcf20defa200cc781b0c02fc13466

openshift-logging/fluentd-rhel8@sha256:fbe3784db6708d173898fff0d59ea5872e943dd85107c585ac14ed3fe64a5673

openshift-logging/kibana6-rhel8@sha256:606af53deba1cf1040486c91c2ca0b2950ffeab6f92f4dbaeb879e4795f6ae0c

openshift-logging/log-file-metric-exporter-rhel8@sha256:a5751bd1cdef9aede39acbd621b769677b062929f4bae713e0b043606447a12e

openshift-logging/logging-curator5-rhel8@sha256:adef7462104675c15a91f7260ada1f5d2a0dd7e88794dcc391e873a8c5a00e3c

openshift-logging/logging-loki-rhel8@sha256:b83edfaef1eac25d042567fe845b99cb2a4fa8ecdad8b77c16db3e269c61f7a2

openshift-logging/logging-view-plugin-rhel8@sha256:2a7f459fed9b47435ce11895ab6c5cd4499d4e34f7a35408dce83ef7265fa799

openshift-logging/loki-rhel8-operator@sha256:66c3bd0e3ce094609b315a7cad645ebd5e90ff8aa708c0801e0772613685fea1

openshift-logging/lokistack-gateway-rhel8@sha256:27afb705116c37eeb5cf79ada41533e9f21f49a284b2fce9faab372d7c4efd68

openshift-logging/opa-openshift-rhel8@sha256:fd821775f6ab6265bd923440669f28de1c56ed57e5da939d1bc19a7a72d2f705

openshift-logging/vector-rhel8@sha256:4fe39d7bc23fee70b6eafd1169940106651b4008bc2579d4d673da7ca8586c56

ppc64le

openshift-logging/cluster-logging-rhel8-operator@sha256:870385948059ad975f59e137734925b86ac815947ae981a694dc3b1b1bfb5af9

openshift-logging/elasticsearch-proxy-rhel8@sha256:9dd366e039b7ccc9a502b52f4902bc6214d90eb2b2abf2b9364997a15bf49612

openshift-logging/elasticsearch-rhel8-operator@sha256:2361e1e99c59dc82509a18ee248b804631b5f6e03b35dd5377c3454b7e141d0a

openshift-logging/elasticsearch6-rhel8@sha256:8446f432e64c0912a1d4557de528b916875c0ba31b6e2f0f70de71c8036e8c2c

openshift-logging/eventrouter-rhel8@sha256:2e4ce29d82d66bfd0fcbb1dd46a0e15fd73064a6e6abaf175930579573e56d04

openshift-logging/fluentd-rhel8@sha256:1d49c89ce43c24085f48834dfcc41b3dc726f082dec28389d48eb2e62abc628f

openshift-logging/kibana6-rhel8@sha256:b8b616d0166ac25f45b6bcd885a097ec1872737cae124598eced66a662930d54

openshift-logging/log-file-metric-exporter-rhel8@sha256:ef1b071b5da63eb9609c90005fe413ebfd275d1ccf03ddf77deeb2dda1725631

openshift-logging/logging-curator5-rhel8@sha256:bfab3af458605c6de366aef317d22b1d3b49b5a4d091d2db87b0a4ab77a952a6

openshift-logging/logging-loki-rhel8@sha256:f0bca65110505f0ee4f1f8ecd42aaf5655e63affd379ae06971c52a75f46d583

openshift-logging/logging-view-plugin-rhel8@sha256:8830491d9669fc255374b5290a9fe4619a2bca6b8bc1d03985467ec96f8b4335

openshift-logging/loki-rhel8-operator@sha256:a30af184ad22c91a68b1a2657d711776089a5161864d05de8b5b01652f5dedfa

openshift-logging/lokistack-gateway-rhel8@sha256:c164677af7504e575c453aea00e1581f7ee1c852584815953d13d60457903af9

openshift-logging/opa-openshift-rhel8@sha256:68580b0f29dfc5a327e657241f81b4ba99d8241bbab81000e3f31004c794ebfa

openshift-logging/vector-rhel8@sha256:1e973d186fc100592eed0f2b5145b31f739eac5b750902ea9f35777472960f95

s390x

openshift-logging/cluster-logging-rhel8-operator@sha256:4cc4635874c80278273c5595a0436f1e59f54878f61d5f63c5b50db674c9edfc

openshift-logging/elasticsearch-proxy-rhel8@sha256:c7d5e3e20cabc58179ffcc38b2e7e6352d6fef581322df89e271e302356ee47a

openshift-logging/elasticsearch-rhel8-operator@sha256:01f2173ff6fd97f6f7136dd9268d700ba3a6578ba0c641e69959b621422edfbf

openshift-logging/elasticsearch6-rhel8@sha256:692e3b23581bc8500c6b72ca8323dfc1a6a0ce832f0df7495c043b668ccc8dc5

openshift-logging/eventrouter-rhel8@sha256:652db5261c87c534d5f71b969ecc22fde2e1667f4d6a843327ed63fe7d4e811f

openshift-logging/fluentd-rhel8@sha256:2e0f03f79a9d44274e14c1d997cb46e3455ad22fea5b35bd13a143bac2f5e3c3

openshift-logging/kibana6-rhel8@sha256:f6216c4bd08609310512651d6904b74a298cb5694ecf44aa54deb16d6cc00622

openshift-logging/log-file-metric-exporter-rhel8@sha256:92abeb1f9d2652e7e185ff3ae48f08d04fd4d7a83171a8e2ee5830b628504c37

openshift-logging/logging-curator5-rhel8@sha256:b2b2f8e2e63d969a053aabc290d8128728b78c567b0cd97894ad6884ff3cfb90

openshift-logging/logging-loki-rhel8@sha256:4017c7d61dff17cada4d76dac5602c65ee5ba6d9d5fcdadd9a4b0302aa3dcc7b

openshift-logging/logging-view-plugin-rhel8@sha256:abfb5140e38532c23bafd9cb84f3557eb2625573410a3c20e0405885af591fa0

openshift-logging/loki-rhel8-operator@sha256:c0f3190b24a796ded3270df6841861ed729b082450460440b3bd86bb98b83760

openshift-logging/lokistack-gateway-rhel8@sha256:f5aac9e5749fb81278312235c77eb2c37e793c66207beb709c928f1b4ee932b3

openshift-logging/opa-openshift-rhel8@sha256:ca706b129a4bed60e6e54e5eef51f49b0cd394785941798b20500689db9b7afd

openshift-logging/vector-rhel8@sha256:dc75c16a2e2bff99ee81cb021018ba5f5be2279909d9a2ae06b0ed32bbf7b113

x86_64

openshift-logging/cluster-logging-operator-bundle@sha256:7754a6dea44b809450ba39aaf712a44535972ef6d574f1e042c8892f88c0c69c

openshift-logging/cluster-logging-rhel8-operator@sha256:93f34cb65ee1ac8c8f3ad5dc79b1fc4ca52bcac2a7d939c8af0e50902a35a453

openshift-logging/elasticsearch-operator-bundle@sha256:7069e31986fc05cc4f0195fc5c158333c6563cfc5ace48bfc71bccab2febe710

openshift-logging/elasticsearch-proxy-rhel8@sha256:44f7a7c09e2fe31387ac5f4157e30c7885b1a7d2c3164217ebacd5da633ee9ca

openshift-logging/elasticsearch-rhel8-operator@sha256:4a95b84a108c3843a2aa4661618c2af14f27404c074b997092b80728d0fabf85

openshift-logging/elasticsearch6-rhel8@sha256:6ab4f0403ccd1d2db287fa0c8a1f0617708d9a9a864103ad3c3d7d9a25c78e89

openshift-logging/eventrouter-rhel8@sha256:412096e97ed5be32b46428e39034e161709296e429c31777389b8ef1e66446b4

openshift-logging/fluentd-rhel8@sha256:bc1a6fcfac60a81f4df3f34ae8eb7ee2548d30790982ac4e8aa76ee093a508b1

openshift-logging/kibana6-rhel8@sha256:8474fa7737824ce7601e50754e045a760d86b40a9459fdaf588074d664846670

openshift-logging/log-file-metric-exporter-rhel8@sha256:489786027d6f3668643c034a2d134bf86f91c5016a13f9c6d53699da075938f5

openshift-logging/logging-curator5-rhel8@sha256:8709ab399ad9f9921e9340981db9ff2f54dee6d0efe497c9d282ce169a9fc894

openshift-logging/logging-loki-rhel8@sha256:3cb177341db713e66bcb424d9927db6b53afbcbcffa240c60911acf0a017dd3e

openshift-logging/logging-view-plugin-rhel8@sha256:2d4d07e9eca62b28ddaca5ec6fa69a3187b1fbf341b2c22ce89a432b3c378669

openshift-logging/loki-operator-bundle@sha256:33c6d19c16244004ed0d7bb42438b06c775210efd1106247c5b4fa442865fee9

openshift-logging/loki-rhel8-operator@sha256:e0eb7b416caea883359c8144c93558b8545d76d4fc690cb5ee98ec459789ccfc

openshift-logging/lokistack-gateway-rhel8@sha256:6b9eeff64977683756de8a9ae498c947bbd2f852901efd7bd51220732e11c97c

openshift-logging/opa-openshift-rhel8@sha256:ca1d0a0201fd4e82d0affcaf37ef45b10094047af88329f63eb5ce21ddc247f7

openshift-logging/vector-rhel8@sha256:2797d52bd38649cb0cb158c2c8abd73a85134eb15de952f4168c047d00527de5

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation