Red Hat Product Errata RHSA-2024:7374 - Security Advisory
Issued:
2024-09-30
Updated:
2024-09-30

RHSA-2024:7374 - Security Advisory

Synopsis

Low: Security update for service-interconnect rhel9 container images

Type/Severity

Security Advisory: Low

Topic

Updated service-interconnect container images are now available for Service Interconnect 1 for RHEL 9.

Description

Users of service-interconnect rhel9 container images are advised
to upgrade to these updated images, which contain backported patches to correct security issues and fix bugs.
Users of these images are also encouraged to rebuild all container images that depend on these images.
You can find images updated by this advisory the in Red Hat Container Catalog

Solution

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

For details on how to apply this update, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • Red Hat Service Interconnect 1 for RHEL 9 x86_64
  • Red Hat Service Interconnect 1 for RHEL 9 aarch64

Fixes

  • BZ - 2270498 - CVE-2024-2398 curl: HTTP/2 push headers memory-leak
  • BZ - 2279632 - CVE-2024-34397 glib2: Signal subscription vulnerabilities
  • BZ - 2294676 - CVE-2024-37371 krb5: GSS message token handling
  • BZ - 2294677 - CVE-2024-37370 krb5: GSS message token handling
  • BZ - 2297771 - CVE-2024-6345 pypa/setuptools: Remote code execution via download functions in the package_index module in pypa/setuptools
  • BZ - 2302255 - CVE-2024-6923 cpython: python: email module doesn't properly quotes newlines in email headers, allowing header injection

aarch64

service-interconnect/skupper-config-sync-rhel9@sha256:1e51ccc87e6b809e6f510eafaebf9d7b6d9ac02d85d99a21f7c2b3546d95c993
service-interconnect/skupper-controller-podman-rhel9@sha256:a267af3a4a7ac8bc1a95ab4668d38b78eb2b6ebb4c435725b28e0139994b1db8
service-interconnect/skupper-controller-podman-container-rhel9@sha256:a267af3a4a7ac8bc1a95ab4668d38b78eb2b6ebb4c435725b28e0139994b1db8
service-interconnect/skupper-flow-collector-rhel9@sha256:5a2bbc2d6ff9877c92bb6f8f9e74b4d398af9a9d0c1c63614ad5221ae0f4387b
service-interconnect/skupper-operator-bundle@sha256:e639c7884894da448456e3a954e0d0e7fc4a70966892b10c8eaa12fdd5cc9d16
service-interconnect/skupper-router-rhel9@sha256:22ef901809e7f27ab1c0f8d0b16861ccd3aacf88c486a7849cf04be9ec937a34
service-interconnect/skupper-service-controller-rhel9@sha256:23635d9021733243d00aeb79c67f574efeafad8811d6b5efabd1055f7d70807c
service-interconnect/skupper-site-controller-rhel9@sha256:c7de1b3a39ae8e4ea095b40fa697ac8678eb5903aff605e854b9bda36f9d1693

ppc64le

service-interconnect/skupper-config-sync-rhel9@sha256:1fa92e9dd6c8be900e19a56601239a5cd77c73926f5d1df486541a47fd82d48a
service-interconnect/skupper-controller-podman-rhel9@sha256:b370e625537896ac976aea04fbfc08a1d8f49470ad86bcbf56f911612ace5705
service-interconnect/skupper-controller-podman-container-rhel9@sha256:b370e625537896ac976aea04fbfc08a1d8f49470ad86bcbf56f911612ace5705
service-interconnect/skupper-flow-collector-rhel9@sha256:a5d0feb9be612ee20a3aecb144338d34a05a92c0fd85c55f002303ea68a5456f
service-interconnect/skupper-router-rhel9@sha256:e46486ce27952590e7c4ed818c2ec357b90257881104bab09fb481f14124a322
service-interconnect/skupper-service-controller-rhel9@sha256:09e450f2722b9750e07557885e833b640b38de0674c18d540bbe1d68ad81a429
service-interconnect/skupper-site-controller-rhel9@sha256:85cfc600b04354394bca458cd2e28c41355c71287e09ed800a1259d8c3d286d2

s390x

service-interconnect/skupper-config-sync-rhel9@sha256:aa3f104a46c7d0a1cdbea484270196933d3d9ba831adf66a82ca9f4d5bf6c1c1
service-interconnect/skupper-controller-podman-rhel9@sha256:8ec1dd7c77d43c4fd85e34e9b57407616d41b297d207427b7cda3055edacf1fb
service-interconnect/skupper-controller-podman-container-rhel9@sha256:8ec1dd7c77d43c4fd85e34e9b57407616d41b297d207427b7cda3055edacf1fb
service-interconnect/skupper-flow-collector-rhel9@sha256:c61deb80251fd029d54f0e1c80e275931b5961e12c69032f53d810ea77ad878b
service-interconnect/skupper-router-rhel9@sha256:cd60506a79c19cacf00b4d0ba7b480bd2ac581dd5dd940ea465aa2f26a87b69b
service-interconnect/skupper-service-controller-rhel9@sha256:5a37e9dda65c4dc3c98148ddaeb9d9d0775f135a5bceac2d965df59a6da6195e
service-interconnect/skupper-site-controller-rhel9@sha256:ee72aa47a10c33b3e20022ebc2f9dab4e000d195363cd702fb67f7c7c298759f

x86_64

service-interconnect/skupper-config-sync-rhel9@sha256:450bcad67cd3fb43bb1a1eee5a1b5c2fe30b35e5ee1733d49acaccbbcb3c01df
service-interconnect/skupper-controller-podman-rhel9@sha256:2e40acb1ece840bf75b32a7a5a1410ccb510f640f062e42b636efd2da57d8254
service-interconnect/skupper-controller-podman-container-rhel9@sha256:2e40acb1ece840bf75b32a7a5a1410ccb510f640f062e42b636efd2da57d8254
service-interconnect/skupper-flow-collector-rhel9@sha256:852c0d2e1fe3aa94340cafb34d3a1f30e5d60a2a13f4e1dcd05a2803fe3b1b94
service-interconnect/skupper-operator-bundle@sha256:1a2e41708c18de011215f3bb4332ec3616cbc7b7122908af1bc83e6b98ea7efd
service-interconnect/skupper-router-rhel9@sha256:4648a0c7c7f0c24de88e19e4575b61f0642e5f14d4f159adfc29aa02a2838958
service-interconnect/skupper-service-controller-rhel9@sha256:5ef5bb44d5b145edbab3251df66759b1b5ba7759df2393a695afe7499b496ac0
service-interconnect/skupper-site-controller-rhel9@sha256:89b500b2f4b4a120fb3a408782759d3200702a61448c3d588663a2acd4259498

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.