Red Hat Product Errata RHSA-2024:0694 - Security Advisory
Issued:
2024-02-07
Updated:
2024-02-07

RHSA-2024:0694 - Security Advisory

Synopsis

Moderate: Logging Subsystem 5.7.11 - Red Hat OpenShift

Type/Severity

Security Advisory: Moderate

Topic

Logging Subsystem 5.7.11 - Red Hat OpenShift

Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

Logging Subsystem 5.7.11 - Red Hat OpenShift

Security Fix(es):

  • golang: net/http/internal: Denial of Service (DoS) via Resource Consumption via HTTP requests (CVE-2023-39326)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

For details on how to apply this update, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • Logging Subsystem for Red Hat OpenShift for ARM 64 5 for RHEL 8 aarch64
  • Logging Subsystem for Red Hat OpenShift 5 for RHEL 8 x86_64
  • Logging Subsystem for Red Hat OpenShift for IBM Power, little endian 5 for RHEL 8 ppc64le
  • Logging Subsystem for Red Hat OpenShift for IBM Z and LinuxONE 5 for RHEL 8 s390x

Fixes

  • BZ - 2253330 - CVE-2023-39326 golang: net/http/internal: Denial of Service (DoS) via Resource Consumption via HTTP requests
  • LOG-4968 - [release-5.7] Loki doesn't watch the `spec.storage.tls.caName` for updating the status

aarch64

openshift-logging/cluster-logging-rhel8-operator@sha256:c647c98954c50546c5e011e90e68f738f052333ae4c070a1afcf6cf6454a5d52
openshift-logging/elasticsearch-proxy-rhel8@sha256:ef578edda1a905c71e67481937ae272147d86b065a41d8bb94ba5b0cf6a3cf03
openshift-logging/elasticsearch-rhel8-operator@sha256:c282047690e6405f3c2faf0d543fd7f4703eed608823d9fb0f132d3d404d19d1
openshift-logging/elasticsearch6-rhel8@sha256:12001f4b8ea48f225dd8d349af113946bf88ab6a41a27471a023ba1ed2b48548
openshift-logging/eventrouter-rhel8@sha256:374485b024c738fe206be08ea0a5ec2ea4edde5154a472c867c3a951f73f65bc
openshift-logging/fluentd-rhel8@sha256:1d22b7726d80c6c7d0984a62789a9f9984be9ebb51997a5758755ea8fede86bf
openshift-logging/kibana6-rhel8@sha256:f47eabe33c545a3346a7366c0a7ddfd1901c482846550e9c40062372ed568ae7
openshift-logging/log-file-metric-exporter-rhel8@sha256:255eda586dfec1b3c2115e209e30c41bfaa5265296ad41df42af207149b761dd
openshift-logging/logging-curator5-rhel8@sha256:939d4437b5994799594848e23220b04ce2f5c34be90fc60a854d883eed4af197
openshift-logging/logging-loki-rhel8@sha256:aa2fe367d445d7ae243484b3a295164bb9b5b293bc21f014ea028beefb12713c
openshift-logging/logging-view-plugin-rhel8@sha256:8ef4043821b65a52afb447de00236a8e3f4cf35551d28a6900e1ff017594ed7c
openshift-logging/loki-rhel8-operator@sha256:b4f662e7e19cea792f2928636b053879e02eacf68aab0bc79c98df6eb7ab6e1d
openshift-logging/lokistack-gateway-rhel8@sha256:2ca336596ce51aa788fe59f0bd9275f5c8b4aefeb57e7e0cc115a30e6aa2c81b
openshift-logging/opa-openshift-rhel8@sha256:5e5359bd2a8af2aea6a95efaff964391fd2fbf436f9a8ff63dcb0be58f3dbd44
openshift-logging/vector-rhel8@sha256:e3cc461549b1fa672c79e8e4ecdb6b2f3809f797b6596b79df61067e79ff99d8

ppc64le

openshift-logging/cluster-logging-rhel8-operator@sha256:e31686d4d84f746db23c439d1af8cf59d8e35f387e596af590bbb96e09f7e88b
openshift-logging/elasticsearch-proxy-rhel8@sha256:7b1f36ca9e664817ef85cddf8edbc222eab2c932de09bffef439f93ea36bf5a3
openshift-logging/elasticsearch-rhel8-operator@sha256:bd8cc9571f6d2bd92b5c27ef50dc3b47fa1d9efaba0ebba3023c5fc2704fb250
openshift-logging/elasticsearch6-rhel8@sha256:d588365b9c1822e00888a9ceee6ebe20a3b865959cc8c935265a098f65bdd282
openshift-logging/eventrouter-rhel8@sha256:9ac84cce893f0efb4833278ac6c50950e5841180c9a1db73e0e1186df412788d
openshift-logging/fluentd-rhel8@sha256:0bf141709d11fbe54633cd427edfc4927069be33a3a671c1f90ea14981608576
openshift-logging/kibana6-rhel8@sha256:ffd4e95bb08ab86ad8237e8faee564eb31ffda4746d25df56880af30ade50931
openshift-logging/log-file-metric-exporter-rhel8@sha256:359013c2769ed4decd9091648bf89fff988bceb6ca92e71e6c8a0c0aef7a9f53
openshift-logging/logging-curator5-rhel8@sha256:fd8df632e9cbe5f04026d53fa6cffce94ecb9aa576695a6c07dc33330539ba82
openshift-logging/logging-loki-rhel8@sha256:4018115dc2281e89c5c6196974c2ac3424b5e1e911e5a241a422ccf2f02b4d7e
openshift-logging/logging-view-plugin-rhel8@sha256:368cc8b5c0730dc3250bab7a62fadb222ac2f0633085f1b8b4eb58d91ee55e3b
openshift-logging/loki-rhel8-operator@sha256:1e3df16827551bf284967099c8aa1bb461fcc774f0e841e7f033f09870c28202
openshift-logging/lokistack-gateway-rhel8@sha256:0d28a0550396e9bd0fbaed0a68c71c1dca002f9cf9ab7a9c724519d2344eeb66
openshift-logging/opa-openshift-rhel8@sha256:5fb929029f3b7907dbe1aae13fc82a01fdc1a7ed3cc65376cf059c77e4abdd67
openshift-logging/vector-rhel8@sha256:e2e8f080ecffabe67ed3c9444a8685b6cd60ac759cef7929c503058d88f1f643

s390x

openshift-logging/cluster-logging-rhel8-operator@sha256:92366f9c7d6606dd01ad6b4a1fc4af1b53df81ae4fcc598ae61198de682a6663
openshift-logging/elasticsearch-proxy-rhel8@sha256:964cd8176522cc41b2ac26992e81da35aa2bf54be0690ff14643ea3726fb451b
openshift-logging/elasticsearch-rhel8-operator@sha256:27192d0a67acd55d457548a198f94339460731234c0dd2c723f6ebe132607402
openshift-logging/elasticsearch6-rhel8@sha256:a2f174857a15ab37bbb5430492603cb1e35707e0798a37f352a6dfc20f291e5e
openshift-logging/eventrouter-rhel8@sha256:bf87a3a3ccfc1bd074d4e8e749be07587841a99c97b72b6f71af78b13bd6f77b
openshift-logging/fluentd-rhel8@sha256:ff14c7198f0e0abe3e93ce7970b3dbd6e674fec6f2772a8b8ac77c65656f3c7e
openshift-logging/kibana6-rhel8@sha256:328a740fee92bd4db54b33851bcdc93d182d1bd5e902e3d0ef95ceb39ac1c422
openshift-logging/log-file-metric-exporter-rhel8@sha256:625f0b40c308f0eb2d11ad4d4b2cf54cda3070464c326031130c8452eb94546d
openshift-logging/logging-curator5-rhel8@sha256:53793dc542692baca6ec99262dc2f87816e280ea6b1aded4a98dfd155eefddc8
openshift-logging/logging-loki-rhel8@sha256:1a287f7a670b0549eb705f6111bc75ddd7b1b42f76e72e4fba5cfe1b507b8f5e
openshift-logging/logging-view-plugin-rhel8@sha256:146282786935c2fb55b1ae29953a47c048da09938f83ec6fa9a0f794ef51d856
openshift-logging/loki-rhel8-operator@sha256:4b4a6b2457b4688f8e3e2b91cf6479edcc4d7c5aed04b677d75fd5b00ca783c3
openshift-logging/lokistack-gateway-rhel8@sha256:031117df1d39d2dc4993008bdac2fa55842261f6cb40e125e4a1aa2de7fe7296
openshift-logging/opa-openshift-rhel8@sha256:dab6bde4d4905d4eec2fcab031af5553e855e4c02066999ed78b1fb77de00604
openshift-logging/vector-rhel8@sha256:6b8d9f9f113894cb4ebfb8272a19e9ef49a1a10cb6a9f50175da4b502694ed3c

x86_64

openshift-logging/cluster-logging-operator-bundle@sha256:57bac6d1c8adf6395831d689d068e213ad6642e2a31e97c7a008ebcd436b052e
openshift-logging/cluster-logging-rhel8-operator@sha256:5db1d1beba162705150d693e154ca4e016810e9e01d5286da64730c0b4a8e405
openshift-logging/elasticsearch-operator-bundle@sha256:4cde2750900bdb3ce183f1b6303da9b741ffad23f37609b8a20a7cd74e101de6
openshift-logging/elasticsearch-proxy-rhel8@sha256:d44e7783c3eff22aa5eca981013336925e6f21cdc931bc22b826e28825ff9f18
openshift-logging/elasticsearch-rhel8-operator@sha256:a5209b13fff371044471598deddf0f25153c754a8dbfd9a1569613edda2a9697
openshift-logging/elasticsearch6-rhel8@sha256:cd5dacdb9acb3ab8eeb1141e47bf85dd0c198aafbc3fb9893e0599295297c45f
openshift-logging/eventrouter-rhel8@sha256:145426e573f67ae25606639f4f7bd565a47d59a3f5a5af7054f09383fd8371ab
openshift-logging/fluentd-rhel8@sha256:db34dafe1c4cab4004128ad873cb9e8b69d0252c338d4f4bee3841434cb48c79
openshift-logging/kibana6-rhel8@sha256:fc763b948933e00096c5a7d8661e603a3eca431f9a69e7449fc0aacaeb34813a
openshift-logging/log-file-metric-exporter-rhel8@sha256:53e0a0262771abdd94c1e64f635140a61726607266862594e9cf813ba47c7c67
openshift-logging/logging-curator5-rhel8@sha256:dd3e05dd8f0e974dfe7838b214ba8528176e32bc29ecf89cebcde9865f079708
openshift-logging/logging-loki-rhel8@sha256:3fe6e963deb5d6e1197cb1678c8080e513fe6a4908ce9d039a72c91912e63a66
openshift-logging/logging-view-plugin-rhel8@sha256:59aa94ea3e5b98d97d4ecff01d39b8a9cb502898dd12d5f670a739a6e673cd5d
openshift-logging/loki-operator-bundle@sha256:69ca694d246a99de01ae5052595ec990213a08aa2b4fb4bde73b5dba0ea7f4ac
openshift-logging/loki-rhel8-operator@sha256:2fa4eed023c26d9cf7963250839e067b22e1f374d67cd9bd9df72996e6c84f53
openshift-logging/lokistack-gateway-rhel8@sha256:be11956803979052350e3de5a32bd8553fa470c7e484fab658be4499d2c34082
openshift-logging/opa-openshift-rhel8@sha256:4e7eaed2c89c1cd5dcd95519e9f3b03e57514eec9c564384fef83d2a9fe359dc
openshift-logging/vector-rhel8@sha256:744916d18a7255b07741b60b2328489c9631afe6722aef49c7c8d2db2ea14a64

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.