Red Hat Product Errata RHSA-2024:4335 - Security Advisory
Issued:
2024-07-17
Updated:
2024-07-17

RHSA-2024:4335 - Security Advisory

Synopsis

Moderate: security update Logging for Red Hat OpenShift - 5.8.9

Type/Severity

Security Advisory: Moderate

Topic

Moderate -- Logging for Red Hat OpenShift - 5.8.9

Description

Logging for Red Hat OpenShift - 5.8.9
golang: net/netip: Unexpected behavior from Is methods for IPv4-mapped IPv6 addresses (CVE-2024-24790)

Solution

For OpenShift Container Platform 4.13 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:

https://docs.openshift.com/container-platform/4.13/release_notes/ocp-4-13-release-notes.html

For Red Hat OpenShift Logging 5.8, see the following instructions to apply this update:

https://docs.openshift.com/container-platform/4.13/logging/cluster-logging-upgrading.html

Affected Products

  • Logging Subsystem for Red Hat OpenShift for ARM 64 5 for RHEL 9 aarch64
  • Logging Subsystem for Red Hat OpenShift 5 for RHEL 9 x86_64
  • Logging Subsystem for Red Hat OpenShift for IBM Power, little endian 5 for RHEL 9 ppc64le
  • Logging Subsystem for Red Hat OpenShift for IBM Z and LinuxONE 5 for RHEL 9 s390x

Fixes

  • LOG-5620 - [release-5.8] Elasticsearch Runbook URLs are not correct in OCP alerts
  • LOG-5698 - [release-5.8] Console label queries should use Loki API instead of k8s API
  • LOG-5750 - [release-5.8] Missing Loki Volume API in LokiStack
  • LOG-5776 - Continuously generating secrets in the Elasticsearch, Kibana instance namespace on OCP 4.16
  • LOG-5761 - Upgrade to Loki v3.1.0

aarch64

openshift-logging/cluster-logging-rhel9-operator@sha256:0b1c9c633ec946f26b8bf38d77827a2be6c3dcacdaf435a0332edd3f96011b0d
openshift-logging/elasticsearch-proxy-rhel9@sha256:797f393b0b4c03793a89e925d2c306be8c2dd2a5047519cc03bebf22744315e6
openshift-logging/elasticsearch-rhel9-operator@sha256:b6f6e778e454c86416b54e6dbf3c2a0fd956b2093431f099c5ec60a4109fb255
openshift-logging/elasticsearch6-rhel9@sha256:14329c17e699110a86762d35db43d121032d3089fe150932a8217917732e0547
openshift-logging/eventrouter-rhel9@sha256:c89ff7cff5e14263f7704ce5246324c0c8ab5a8cfcad7c9dc1dbce6ad5e9fb52
openshift-logging/fluentd-rhel9@sha256:c9b7ce17ea16d50f192cca607c2131d9ac590ed72afe4e5404e00e6917893ea5
openshift-logging/log-file-metric-exporter-rhel9@sha256:306c644293ae3a36ce9152e5467c0bf5f5f6fc8c688ce9f1f1b354762fe5ea52
openshift-logging/logging-curator5-rhel9@sha256:b7e5e49ab7b8bcb0c1a2ddc9f39ffcbd888d54dad34e95511055731d0b8f507b
openshift-logging/logging-loki-rhel9@sha256:6ad7e79ceaefbf74a220548e1af2ee7ceca272cecf927358a6ccbdb89ded2967
openshift-logging/logging-view-plugin-rhel9@sha256:9d15c6deacd232f91c6eedbeb700fe877bd381ab0443bca7eef7b29e352f1ba7
openshift-logging/loki-rhel9-operator@sha256:a18ac96c399c408bafb30a2582128be3e16f4bd46ca99d5182399c0e55e4e718
openshift-logging/lokistack-gateway-rhel9@sha256:d4c5018fa6a3dbf428ee056e8b84c942b57a8529cea15cbc61e56218c6bbe097
openshift-logging/opa-openshift-rhel9@sha256:35d7d602b00e86f32cb5c89eb98e69e0ca1cff45a7a341a9261c88fc2ef2cebd
openshift-logging/vector-rhel9@sha256:50caf61b35b0c2da1abba4dd92c66964583ced90c7955372618f00b4417a356e

ppc64le

openshift-logging/cluster-logging-rhel9-operator@sha256:41282c2fcfd81b26128d2fc401bc7ca05ed13bd43c67da3c6d0d6b1a41516e7d
openshift-logging/elasticsearch-proxy-rhel9@sha256:0567e1a190aeb5d2f284a5d9d1ea68427be7d1c5d2b695aac45ce000f83b3186
openshift-logging/elasticsearch-rhel9-operator@sha256:cc3411e8d971f8612139954392b6d1dcc6f5216adbd23783c2eb3874b365cce4
openshift-logging/elasticsearch6-rhel9@sha256:beb47fddf6aa4965096c147ea08e1929b4cadc409752af291b7bc70c9acba71c
openshift-logging/eventrouter-rhel9@sha256:1702d394a5070455c72d9bf407e96d83f1c1ddcef9d1f942d0f0285ca7248da2
openshift-logging/fluentd-rhel9@sha256:62688acfc417b133e22bf76cd098deea5869fbcce9d1a2b85edea2772ea49228
openshift-logging/log-file-metric-exporter-rhel9@sha256:074dbebd546a16f938a549b144026eac5df7b14840c92a85d858110e43ef37c3
openshift-logging/logging-curator5-rhel9@sha256:7e098b97021f8eed1c4e9ec2913448d61e3f792543d6d99c52dc0777d24c1c36
openshift-logging/logging-loki-rhel9@sha256:3f7415569f0770bab0487b6eaff9d808ca0c7710bd873d4c3d9d4c511f89f65a
openshift-logging/logging-view-plugin-rhel9@sha256:f605f331d2ec6ec43ac2cffdd6a7668a05c0111b1638b80204e380d2c653f2b6
openshift-logging/loki-rhel9-operator@sha256:2c10b060dabf17af22e9ce74964b6aa0cd0b216e6e2f525f764044e510677bac
openshift-logging/lokistack-gateway-rhel9@sha256:4dc74b5006310e0448b510ccc1b9bc10a69bdd1546c8bdae58616833af9468cf
openshift-logging/opa-openshift-rhel9@sha256:5d176e11c0c4dfeefd24ae70fec3775444ef4f004b0745ea3df692480cbc99d8
openshift-logging/vector-rhel9@sha256:ccb462885fbe43c690ac41301bb6122c000c4f49f46fd9185efe60b97e6cdd4e

s390x

openshift-logging/cluster-logging-rhel9-operator@sha256:ec295d2132ae40a49db869c41dd0a2edd12d258f4c2c30c6cf1bb0ac42a014aa
openshift-logging/elasticsearch-proxy-rhel9@sha256:4c1443f3859ed7da30ffcdddf1f7733d2b9b316fa702291ce357913cf4354f4b
openshift-logging/elasticsearch-rhel9-operator@sha256:12541136fa911f344d91d0428362e0b6fdddb214f4df1cd4bc118c09ee70cf10
openshift-logging/elasticsearch6-rhel9@sha256:60f98cceaa43c97a9aac27f5a6a00d2d664d505d44168f84ddd68d29e7b78610
openshift-logging/eventrouter-rhel9@sha256:7a9352523a79edf12837c747485f6b5626ef613e7403f288df97023116afd906
openshift-logging/fluentd-rhel9@sha256:d7bbf517ff51313113ccbcbc9eebfffe77896be9a256b6e901f50022e12803df
openshift-logging/log-file-metric-exporter-rhel9@sha256:a7f169db593083d3cccf2cab7ddb6a3c963696c14fc308ae0aa9343fc98b1567
openshift-logging/logging-curator5-rhel9@sha256:8048be70c20e2b983c4fe7babf782d64e4822bc2c9f3fc3bb46b007851413752
openshift-logging/logging-loki-rhel9@sha256:d42387f9990502362bd3378448eed70e06b12df31aabc00a181776d7be1fb0a9
openshift-logging/logging-view-plugin-rhel9@sha256:c88fe1c29ec3e47cba6f3e6c4694bb44b1a4ed6643b1c516015fad96514a7786
openshift-logging/loki-rhel9-operator@sha256:1e7fc15a880bdb41bb0c9a4af36608c6f0f5976230cdad9f817aa55620a3ae34
openshift-logging/lokistack-gateway-rhel9@sha256:2ce91d1cd0a2765da70b8280a942fab25a815d5b99be6de234434b19fd2f8bc3
openshift-logging/opa-openshift-rhel9@sha256:989e404b22b46b97c5ba060b1f9772f4d0946f9741a4a07d64ebeb5b0137a9a1
openshift-logging/vector-rhel9@sha256:44877a234ebbfea835fb261e69fad1594709563a8bbb5810e344ebc55eb81edb

x86_64

openshift-logging/cluster-logging-operator-bundle@sha256:4b3573eac060af0613057a61edeafb4056b6079f94f2b2def1ae433be205bf50
openshift-logging/cluster-logging-rhel9-operator@sha256:ae33bf8bcc3bcd74e88487af19b1748cdc27817ac4d1ec37df52c964c18036e2
openshift-logging/elasticsearch-operator-bundle@sha256:60171ad0fb76f36f317efa23aa1a822759da5bfb988fbb472713a9c1f1599e17
openshift-logging/elasticsearch-proxy-rhel9@sha256:d3ff23e602c5aade0cc7e0c75928fde8236ebc3147cf3927e548cb676a40c6d2
openshift-logging/elasticsearch-rhel9-operator@sha256:da683c10073e43982020e7028962b8e921c48d4b9f9de300e0515793d447af45
openshift-logging/elasticsearch6-rhel9@sha256:c58147504a3111729ad5500aa1a30de519d8960b8edff7fc9b285f74de1a3d13
openshift-logging/eventrouter-rhel9@sha256:9ef71cded2aed905453ca9569e233c03215e606bd2c2fcb2bc049ecd1651697b
openshift-logging/fluentd-rhel9@sha256:b5cc5af5c000004a3e135b34f6995917384a2e72b70912b9e282d67ecacbc233
openshift-logging/log-file-metric-exporter-rhel9@sha256:848bec088163a7c2caa47121070922d7a040940d59c8a56ff82bc8c8151a0a9f
openshift-logging/logging-curator5-rhel9@sha256:894c4dc8274ed3cac42c8df594350bf1641ea3d3b7b09d6269836489e97b6547
openshift-logging/logging-loki-rhel9@sha256:5557eb71dc55b23f1de070d92aedfc708c4372104ba0ff0b2df2ed5590d8e09b
openshift-logging/logging-view-plugin-rhel9@sha256:fbb88c10fbc8c54c5f2d83ea178d5dbfe7e228efb8693031ccec722b6eed3d3a
openshift-logging/loki-operator-bundle@sha256:f0a49ca4d3a62f6b64b3122963299e8e2b88dc5c45527ed6f5490caf79d094d9
openshift-logging/loki-rhel9-operator@sha256:291fa3af2cc3266576b3e95a8e1328e1121090e2752b9ecfdc0bae19cec9c2bf
openshift-logging/lokistack-gateway-rhel9@sha256:c9ef92a565d755143c09af75b66d8eea748c0f61f3a63eea51f06215f23e7106
openshift-logging/opa-openshift-rhel9@sha256:87650559955a3237b1cfe7df8e639b7329af514a2312064ab1c9e4aacee6b27b
openshift-logging/vector-rhel9@sha256:37dd6302928f84c466b8c87e3e29b4f9d01f2fcdde82d21b6178c4d96728ba7e

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.