Red Hat Product Errata RHSA-2025:0329 - Security Advisory
Issued:
2025-01-15
Updated:
2025-01-15

RHSA-2025:0329 - Security Advisory

Synopsis

Important: Logging for Red Hat OpenShift - 5.8.16

Type/Severity

Security Advisory: Important

Topic

Logging for Red Hat OpenShift - 5.8.16

Description

Logging for Red Hat OpenShift - 5.8.16
dompurify: nesting-based mutation XSS vulnerability (CVE-2024-47875)

Solution

For OpenShift Container Platform 4.13 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:

https://docs.openshift.com/container-platform/4.13/release_notes/ocp-4-13-release-notes.html

For Red Hat OpenShift Logging 5.8, see the following instructions to apply this update:

https://docs.openshift.com/container-platform/4.13/logging/cluster-logging-upgrading.html

Affected Products

  • Logging Subsystem for Red Hat OpenShift for ARM 64 5 for RHEL 9 aarch64
  • Logging Subsystem for Red Hat OpenShift 5 for RHEL 9 x86_64
  • Logging Subsystem for Red Hat OpenShift for IBM Power, little endian 5 for RHEL 9 ppc64le
  • Logging Subsystem for Red Hat OpenShift for IBM Z and LinuxONE 5 for RHEL 9 s390x

Fixes

  • LOG-6322 - [release-5.8] Disable automatic discovery of log level in Loki for OpenShift Logging

aarch64

openshift-logging/cluster-logging-rhel9-operator@sha256:005aae06f00c89a9163b25c7cc026bf1c4e0e2f1dca426c93e63c0e7beb6e6ce
openshift-logging/elasticsearch-proxy-rhel9@sha256:e716f674bfcc67c99db13462f1cd653333960ab0d2ac25e7801917621d516614
openshift-logging/elasticsearch-rhel9-operator@sha256:4513b1f084dc5bc4aaa1157874a853347a9013c96c348218b22ff85ac907a49a
openshift-logging/elasticsearch6-rhel9@sha256:1d36c49320ab8db78732e14454c6dd0c20bdbcaa568cbc5286e069a390d6cb81
openshift-logging/eventrouter-rhel9@sha256:06c8663410726f87fc54d1e05d19f1dda7d5f6e8caabe60395540f304bbf0022
openshift-logging/fluentd-rhel9@sha256:1d03453be061070bcb914e799ed03e536a96a2b30580f704120377dce94a8fd7
openshift-logging/log-file-metric-exporter-rhel9@sha256:e47231c177a1ca022d4e7f79e837e99f315cd42d01f3f0de75551471f2ba7f9a
openshift-logging/logging-curator5-rhel9@sha256:44a41db6b1f1fe7ff4eed4eb9a477a11e16ee20633a47a202043646deb80cf73
openshift-logging/logging-loki-rhel9@sha256:644da04b0ca9e645a45e07dd4d9c422ef0443be5e1383a426f0e81fc2bdaa46c
openshift-logging/logging-view-plugin-rhel9@sha256:4064100dfe726ed15ad686a7e172c6f8bb1b676c8b619bcac04ffae22351dab7
openshift-logging/loki-rhel9-operator@sha256:a80fccad715ad74bfedaa29339e701c1ec514666a9fda125b7ec984fbfdeac68
openshift-logging/lokistack-gateway-rhel9@sha256:1bd8c25b7c401341b38f7e29884340d8a9cf84a581546b8cc50ddbfe279a3e40
openshift-logging/opa-openshift-rhel9@sha256:9d78894c3dde67fde95c3798a6be44250546f3615bd7c2c85c3b78c5b948e969
openshift-logging/vector-rhel9@sha256:2b5a275b0f1b5c3f6b0d575b98f4c3850b53316882910ee74b16b68c38901308

ppc64le

openshift-logging/cluster-logging-rhel9-operator@sha256:280fe34ae4c00292eeaa75b3fe72c2e0a4530fee948ea26c4eaff6591a221816
openshift-logging/elasticsearch-proxy-rhel9@sha256:f54e50816a3c53e0881233c2aa1f587a5960363bf0a655547d9fc1b18b49f624
openshift-logging/elasticsearch-rhel9-operator@sha256:a2356af786aaab3c413888a022df006442e09415433568124bf2ccb5e36875df
openshift-logging/elasticsearch6-rhel9@sha256:adc09db92b227aa21063b96d5213ecd4e828c509710a75f60625dc65689194fc
openshift-logging/eventrouter-rhel9@sha256:f3485f32c96c779641c808402504646b14e0f82115e5b81b8dea0598ade18761
openshift-logging/fluentd-rhel9@sha256:c622dfc323c52bb80f9b57aebd5ee8127be94a6a2b9194794ebdb147f2eb826e
openshift-logging/log-file-metric-exporter-rhel9@sha256:a5327009e3d86feeb3b23b1deb289ccee21458fdadadf416e79b5f21f8ac4a6d
openshift-logging/logging-curator5-rhel9@sha256:a9ac334299331d20fb766d3bf2a238fd350e528b8f0f91e7fbbd977957e93a02
openshift-logging/logging-loki-rhel9@sha256:c26dbee6764e5466707b2ed2b89abaef5b22775f887d519c24190af2d93bc795
openshift-logging/logging-view-plugin-rhel9@sha256:9240d5405d00377788a20ac952fd7356ee39398ec818627d8a1030e224c81bf0
openshift-logging/loki-rhel9-operator@sha256:b3b04b4b8434fbdf85f189e12f5fa02d5ada5e8b443f2e7f27fb47d9ff3d5c77
openshift-logging/lokistack-gateway-rhel9@sha256:3196ffea1ee3e0533d956262276ab53a07583af237f4755332e018d2c59b7fd3
openshift-logging/opa-openshift-rhel9@sha256:818935f46bf047aad7a85f7da66fca51fd27cf5e6c7c78045362df7e61a65f3d
openshift-logging/vector-rhel9@sha256:d6c21081f7adfd4b9eda7af9b5a2692087e985a503b99f6093eaeb45b593ec99

s390x

openshift-logging/cluster-logging-rhel9-operator@sha256:8b7a19e15635345ec50dfa06216ca3752db5e45a2c9a64279b0007d59d9d5e7c
openshift-logging/elasticsearch-proxy-rhel9@sha256:a86638b1509fd21548bd9dcdfd5a81c0e664b5a69cfd6622c298d4623dd91e8a
openshift-logging/elasticsearch-rhel9-operator@sha256:dd0a1e56c1885fb82590bc63f756555fdae19279079bd9b4563007e5ddc03212
openshift-logging/elasticsearch6-rhel9@sha256:f804ddc928697dcfa43eadf4426efab90cad3bc53b043ffa570a6b2ec6adb78d
openshift-logging/eventrouter-rhel9@sha256:27cf8a3d2649f9c52bcc1bd02d213bd68e8262395a6b8206bcb0c00a2e93d6aa
openshift-logging/fluentd-rhel9@sha256:4d8f2292c0fbbe9a5f991227a28648c55b8a5b9d8aa58e235ac92a9a6d2929b0
openshift-logging/log-file-metric-exporter-rhel9@sha256:4444a1fee0da12fb24ac6ee10b5213d20a48bce1d73ac70fadb2a8b7a9d344ac
openshift-logging/logging-curator5-rhel9@sha256:85fef320804af3187050e159fc47d8cd805a93deb3e85cf02d682297ff030df6
openshift-logging/logging-loki-rhel9@sha256:f3eb4fd2cca5ba941e6a1873b35ffb125a123fdb44719893ef4349ffa32c108d
openshift-logging/logging-view-plugin-rhel9@sha256:d9afad1be8c0e83664d376ba2e5f3de3d1597e6641799188fb91caf63444f9a9
openshift-logging/loki-rhel9-operator@sha256:436ac0c2d8570e3d070ad988dd9975df6e22d436641721227ba7716f9b34c6ca
openshift-logging/lokistack-gateway-rhel9@sha256:e5d95fd73e0791e24d9d7fc7effbf72814a04dd215e89855168785fa9828ff9d
openshift-logging/opa-openshift-rhel9@sha256:37dd52b741aa3c78bb03ce7ebb4ff3599f9aa7cea0b17217a0d77dfb31e7315e
openshift-logging/vector-rhel9@sha256:83e1e21fc093a8edcbbf659c6233f279f2736505fb015a2bd0203c2a77ae2132

x86_64

openshift-logging/cluster-logging-operator-bundle@sha256:58473a2057e6afafb0c10e6e90eb844a489c439511963fbce58c6e1a5e48eb1c
openshift-logging/cluster-logging-rhel9-operator@sha256:37dc87c3288fd38a4464df259ea975fdd425cd9b2a812a30344b19d25c509cac
openshift-logging/elasticsearch-operator-bundle@sha256:4ce6826507ee4da12599291f9db04c78b44acafca848ca2eff48abc569665094
openshift-logging/elasticsearch-proxy-rhel9@sha256:e39dc186e409102ecff98ddcf8eab735245cd8dac2aac8873046196a13feac09
openshift-logging/elasticsearch-rhel9-operator@sha256:fdf7864142ecbcc748a55d6fdc0b65be6cbdce23db39271c3e46ac5d2a96a61f
openshift-logging/elasticsearch6-rhel9@sha256:3c59da5292ec82aab4f3d122f48353c1a2d8d1bd157a8b5978bda666a17a7bfc
openshift-logging/eventrouter-rhel9@sha256:516fd338924ee556027872dce795d3e609a890f49c36fb30e0fd4c88ebf49d61
openshift-logging/fluentd-rhel9@sha256:9528ac4929198de9b377af2c9247373ff7768270d9a872d8dece61db2b54506f
openshift-logging/log-file-metric-exporter-rhel9@sha256:5ecc9e43ccead565e8119f1fcb123cf2d41c70988d87188d2d20a1c9dc4fb138
openshift-logging/logging-curator5-rhel9@sha256:05e5c1a7e37c1a7cf45e52783d9f585a07ceffd7fa8b3e201299a83112ea1d9f
openshift-logging/logging-loki-rhel9@sha256:bae08d83fcd69393d36e94e8495640200ab274018417ab013b4ea792e71a5f9b
openshift-logging/logging-view-plugin-rhel9@sha256:39843776aa55f88ceef1628b974235d90312368b064acfeaba78da7502f5e385
openshift-logging/loki-operator-bundle@sha256:2e8db8133adbc1fe1943c3fac40d90f3f3c4666820b3f4a07c977b9909eb0745
openshift-logging/loki-rhel9-operator@sha256:be7ef11c660cdca24ae5ca72b6d952703632decdae1c3215ea12933024821024
openshift-logging/lokistack-gateway-rhel9@sha256:2d0fbb9d3494cad96319e2b4e7921b746eac8970999499b5e4f2155318c8fdfc
openshift-logging/opa-openshift-rhel9@sha256:5c454bf68557e0f761a4a07cc548147485080ac9f9aeaab672be5f15dbe835e2
openshift-logging/vector-rhel9@sha256:b35f4a364b555214424fa0df5d607c234ec5712c480082f454c010cafe0677b4

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.