Red Hat Product Errata RHSA-2024:3943 - Security Advisory
Issued:
2024-06-17
Updated:
2024-06-17

RHSA-2024:3943 - Security Advisory

Synopsis

Important: Red Hat OpenShift distributed tracing 3.2.1 operator containers security update

Type/Severity

Security Advisory: Important

Topic

Red Hat OpenShift distributed tracing 3.2.1

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

Release of Red Hat OpenShift distributed tracing provides these changes:

Security Fix(es):

  • opentelemetry-collector: denial of service via specially crafted HTTP or gRPC request (CVE-2024-36129)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • Red Hat OpenShift distributed tracing 3 x86_64
  • Red Hat OpenShift distributed tracing for Power, little endian 3 ppc64le
  • Red Hat OpenShift distributed tracing for IBM Z and LinuxONE 3 s390x
  • Red Hat OpenShift distributed tracing for ARM 3 aarch64

Fixes

  • BZ - 2291337 - CVE-2024-36129 opentelemetry-collector: denial of service via specially crafted HTTP or gRPC request
  • TRACING-4344 - OpenTelemetry collector CVE-2024-36129

aarch64

rhosdt/jaeger-agent-rhel8@sha256:fb5aa41f94b0a86abf523c72766ceb65df38c3db9ff38353719d6de0035ffbdc
rhosdt/jaeger-all-in-one-rhel8@sha256:a1831d0a89dd43cc3ff609c668ba56e6ef1c9aa0b4e2415d77e8b669eb22dfac
rhosdt/jaeger-collector-rhel8@sha256:16a6dca76a733d75d6e3de4db552890905e0106eae66a6e9ae4031eb5bb2e357
rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c8879a96b034635bde298cc86f4b3d6192a39dc7906bea49865c779ae4369426
rhosdt/jaeger-es-rollover-rhel8@sha256:7932a2d60ada2a669b2ad4f5d3f0c956cdb4aca1cfd8116963211668cf324f95
rhosdt/jaeger-ingester-rhel8@sha256:794104cf40a505d0244ac3c2d23d19785d29b1fca882d0354fd129320abf093c
rhosdt/jaeger-operator-bundle@sha256:ee9e1acac032d61486a76d4d36183f5dac1e3e9c826016930a1ad4ed59f4cee7
rhosdt/jaeger-query-rhel8@sha256:c7bf1f061c319d8ff3701dfa756d33d63a01496ba6526363177c6746f508c4c6
rhosdt/jaeger-rhel8-operator@sha256:4b01965dc2786373d46e43773453c3fa182592621d06f6e6d9001b8e53b6b844
rhosdt/opentelemetry-collector-rhel8@sha256:cd453aeddf5014a3b91d22f440847672fc58242617f82a64aa6e668d10cf5949
rhosdt/opentelemetry-operator-bundle@sha256:c90e55c89cbd1e696c4d1a42d67a0a14d2e43fb99de00acac2d57bf69c1dfbdb
rhosdt/opentelemetry-rhel8-operator@sha256:2780f2fff1be43eddccac091ffb55056121059739a98d0255f1459923cdccf23
rhosdt/opentelemetry-target-allocator-rhel8@sha256:9944e14192b97132915df21fe46bf29f77560aee35f142c8e51bbf8119f778de
rhosdt/tempo-gateway-opa-rhel8@sha256:fd3f7625fee23cd081884349ed632762cff480b2d76942e059dc93fbe4ddedf2
rhosdt/tempo-gateway-rhel8@sha256:9518da59837ff3b7472cfaccfd6664672e3a053a227f119a051cda0570c9e653
rhosdt/tempo-operator-bundle@sha256:7bbe7e744b4b7ad53375f02615fcb33b9980d65ed75b5c29688f1bd5accefaa3
rhosdt/tempo-query-rhel8@sha256:3e730362b9359e071dad1a0decf24a78ad374cc98b9606c16b0f7a6fb3a7bd9b
rhosdt/tempo-rhel8@sha256:396c6fcef9a4ab2627181359746ed68edf20d92f367c96a5f717cfe6517bd203
rhosdt/tempo-rhel8-operator@sha256:2d7af49b7d6c8d04384c476b425fe767b8b6cf822e5a8ebe2e1ed804ea7ca1eb

ppc64le

rhosdt/jaeger-agent-rhel8@sha256:6d1cb2538155f033909d8e088a013836fc683b61d1769ddd182c77c1263f07c6
rhosdt/jaeger-all-in-one-rhel8@sha256:245930bb3ab17bf5a5151a425b07e1525ced0c2ae8ff61e2ed5a0166d2a49149
rhosdt/jaeger-collector-rhel8@sha256:3ec93fd310c2e4c03fa5193e655f67004ddaf465f9154e76a8a95ed754e65976
rhosdt/jaeger-es-index-cleaner-rhel8@sha256:0257eb8ad7159b1e4eebdfd522f21496074266acea5cb16b01e68eabd6164dbc
rhosdt/jaeger-es-rollover-rhel8@sha256:3ca28d2ba4d5a365f1acd40963f613c3d1bb42d07b8a73f054509719761f9fa5
rhosdt/jaeger-ingester-rhel8@sha256:616fba7c8ff784ee349c3c4fe2dc2cacf48246bd89b41b90e26a153a8ca0e195
rhosdt/jaeger-operator-bundle@sha256:48b673f1569e69ee1c4ce4893b65ef4befb9d04d678f5e616618b9b6595ac917
rhosdt/jaeger-query-rhel8@sha256:7d9396c71cc6142f99bade287b2aef619a29579f645bd333c2b229f6911ddead
rhosdt/jaeger-rhel8-operator@sha256:4b62e3078383fb995d4acfa70309efa51992abb41b50c088f1cbc38c5986d202
rhosdt/opentelemetry-collector-rhel8@sha256:ebb07388cfd4d8cb534e3903038e73bc927400bb066343ad0704eda0c63fa9ec
rhosdt/opentelemetry-operator-bundle@sha256:6a0971b0ad235831c7c04cefad16cec6ff0ddd22195e55583bb3cc480d400ef9
rhosdt/opentelemetry-rhel8-operator@sha256:0524a96e07b6d432c041b801e9cd7926837e6fef46af42afa4bb0288aef24df4
rhosdt/opentelemetry-target-allocator-rhel8@sha256:1220a6e721cabeb55ea2f879283e325be34dbd509d041a0cb5d85e73709417cd
rhosdt/tempo-gateway-opa-rhel8@sha256:2325a00807cd98e34ad666d5a6e193ca94899fdb9acd84852ea9971b777c163f
rhosdt/tempo-gateway-rhel8@sha256:a772a420a6a5a70baf1058c35b255b87cee307d7ae79f4bf72829b55f33338cf
rhosdt/tempo-operator-bundle@sha256:2a395cc7eb2c67cdee59ecedb6c8497833fb14877c996e8d34f3555cd14ad7f7
rhosdt/tempo-query-rhel8@sha256:c6f07167aad12f099535db2ff76ff68ef8fa8420ec9c0ee9e59d338aae056edd
rhosdt/tempo-rhel8@sha256:102db0e641f8d461d4ba92f445bdce425afddafddff006250405a3e1c931c2b7
rhosdt/tempo-rhel8-operator@sha256:f21342c0d9a28a48cba35365807b4740663db1aa9ef0fe36ffc9a759e1864c71

s390x

rhosdt/jaeger-agent-rhel8@sha256:2b0fb0d6181a0284233669ddb0458122e1fabea6daeae12671b6d1219c8e2bf6
rhosdt/jaeger-all-in-one-rhel8@sha256:7cf6cc990b52b3f6f7c663ac15ae1c090b3fd3c500e1b251f96d9d512a361195
rhosdt/jaeger-collector-rhel8@sha256:1b6dde7d4c3bc0227f4e8077bba21c948901304288b2b42238bce28951bf777c
rhosdt/jaeger-es-index-cleaner-rhel8@sha256:cdaed1cbb883cec0b785211f4eeb3dd119cdeaf33366af1e677c28cced056753
rhosdt/jaeger-es-rollover-rhel8@sha256:4e23527d2c65bfd655e8060ebd05d58282ffc3b4b91bcdbb48fbcca90977bbf3
rhosdt/jaeger-ingester-rhel8@sha256:9eecdd0f48eaf7a6aded05bf504c82a4e89b5da8ed84d1fa12c322bf676fa5a0
rhosdt/jaeger-operator-bundle@sha256:bc6a22b1774aea035aed393d404324568c392f6aba2deb62bfbad2e7aec408d7
rhosdt/jaeger-query-rhel8@sha256:abe2247da478226cf7a40cc8623f91410fed282487a6dab9f1c98170d1383969
rhosdt/jaeger-rhel8-operator@sha256:c7fa52b1935d7e1cc6a6274c56b5df1d0ae2ff9fd95901a7e15847dc654dc60e
rhosdt/opentelemetry-collector-rhel8@sha256:0129388735cff9712b1c8cae7cbc0caaed94dbad9b8c9789de9789f58f484f8e
rhosdt/opentelemetry-operator-bundle@sha256:8a3afe2eb60314df03171f9b9c811bc118387b4e54d4eb5f168cbb7193c4e8c3
rhosdt/opentelemetry-rhel8-operator@sha256:82e351c3b7b32b62501a5a5ab56dc4e312b3d043b27570a06edd63fd89769328
rhosdt/opentelemetry-target-allocator-rhel8@sha256:878f66261440d7c062577774ebd00364ca51f3ad3fea07b6119c55e128f17625
rhosdt/tempo-gateway-opa-rhel8@sha256:36d6a823617c710af0bdde056a0518aa517aca74ff58978377aba18f58b812a0
rhosdt/tempo-gateway-rhel8@sha256:a0421a538015440c2d6799be7f691ac98ddbe47216f3486a88c0e82c115f9a6a
rhosdt/tempo-operator-bundle@sha256:009d39b8894627b0be013239e842776dcdb8a26aa5c63aab005772ed68d2f46c
rhosdt/tempo-query-rhel8@sha256:010d235813b78bc6c22ffd8d33bc5f77ad1a938213d77423cb52e7ba765723a5
rhosdt/tempo-rhel8@sha256:32a5030b147eb8ad4977c1ba9629ebb3154cf44ea5c2ced8c6f04469d6054f53
rhosdt/tempo-rhel8-operator@sha256:42a5a38ad4c470350316ab09014b27967d49613f72b01f9590f2558c32ef7125

x86_64

rhosdt/jaeger-agent-rhel8@sha256:03179b679ee33f51d89789a0f0bea6152b00fd7c13da9593e67b706c1e165912
rhosdt/jaeger-all-in-one-rhel8@sha256:63b9c740262b01dd97edbbacf8e66a0d35187d9b4c3db0f7061569921ba0b435
rhosdt/jaeger-collector-rhel8@sha256:095ec17767d98a372ddf88a27d896f0eeb26bf29da61e520000ffebac011a268
rhosdt/jaeger-es-index-cleaner-rhel8@sha256:44da069d5aab2a8fb632a862a5ae327fe580ae97c1dadaced1fdb2980af532cf
rhosdt/jaeger-es-rollover-rhel8@sha256:c56cad5b9076e0ff01a0515e87f8b2b6b44c13e525c46a9dc0bf9741b2437597
rhosdt/jaeger-ingester-rhel8@sha256:62267a1d851853a04e6bdc994f9e2dd2c5c9da8fedff611182df27ef34bab37f
rhosdt/jaeger-operator-bundle@sha256:3048dd6953414dfbcaba2934785d2e5774acc9507f34ac3509a1a410b0c07f76
rhosdt/jaeger-query-rhel8@sha256:bfe11588f58a920e4117c06a407d142a985318f2b746cb97237c73ac3d3f7e19
rhosdt/jaeger-rhel8-operator@sha256:c7312ab3bf2d911cb4acb29989f19a87c2c0ad19d5325c343685e32e3f346d0e
rhosdt/opentelemetry-collector-rhel8@sha256:ebadded6eb776515178cb85a024613ec873fbeb52a66e4176c582ed5443f960d
rhosdt/opentelemetry-operator-bundle@sha256:3c53d78d1aaca0166e8b13d1e98cf983ebbe70ca9fe4ca9ec187ee89ff16f869
rhosdt/opentelemetry-rhel8-operator@sha256:25cb32d32c776c3ca5cf3567a9fb8809f3f12e3cb551d06fbeeeb0d668d759e0
rhosdt/opentelemetry-target-allocator-rhel8@sha256:a9a3bb1cbf169a65d2910333278cbd05e16b4268089d75c693f5c7480f0b24fb
rhosdt/tempo-gateway-opa-rhel8@sha256:3f054329885fac3d2aa00ba43e30540595a3a3521154df22f3c51995f38ee2b0
rhosdt/tempo-gateway-rhel8@sha256:d04dc1a142258e8c7455d5c59157bd293f78ee7bb673a3783d23a7474b408394
rhosdt/tempo-operator-bundle@sha256:57cbaada2dce7abcabaf94d441e07d77126a60726adbb829808e157f9d0897cb
rhosdt/tempo-query-rhel8@sha256:455f3b2d5d0609cf76279cfdffd7176cf5427eedd5ec47b9ce8a2981a11e2903
rhosdt/tempo-rhel8@sha256:bbe09630f77833bf75287b5ac987b5cc881e850d5f4f3080799fc07d31b87f47
rhosdt/tempo-rhel8-operator@sha256:166cab89786ed016d10f325e0f0341e6e09a09cd25aa34876fb45db12b5aa172

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.