Red Hat Product Errata RHSA-2025:0783 - Security Advisory
Issued:
2025-01-28
Updated:
2025-01-28

RHSA-2025:0783 - Security Advisory

Synopsis

Important: Red Hat OpenShift Data Foundation 4.16.6 Bug fix update

Type/Severity

Security Advisory: Important

Topic

Updated images that fix several bugs are now available for Red Hat OpenShift Data Foundation 4.16.6 on Red Hat Enterprise Linux 9 from Red Hat Container Registry.

Description

Red Hat OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Data Foundation. Red Hat OpenShift Data Foundation is a highly scalable, production-grade persistent storage for stateful applications running in the Red Hat OpenShift Container Platform. In addition to persistent storage, Red Hat OpenShift Data Foundation provisions a multi-cloud data management service with an S3 compatible API.

Security Fix(es) from Bugzilla:

  • golang.org/x/net/html: Non-linear parsing of case-insensitive content in golang.org/x/net/html (CVE-2024-45338)
  • path-to-regexp: path-to-regexp Unpatched `path-to-regexp` ReDoS in 0.1.x (CVE-2024-52798)

For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.

Solution

Before applying this update, make sure all previously released errata relevant to your system have been applied.

For details on how to apply this update, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • Red Hat OpenShift Data Foundation 4 for RHEL 9 x86_64
  • Red Hat OpenShift Data Foundation for IBM Power, little endian 4 for RHEL 9 ppc64le
  • Red Hat OpenShift Data Foundation for IBM Z and LinuxONE 4 for RHEL 9 s390x
  • Red Hat OpenShift Data Foundation for RHEL 9 ARM 4 aarch64

Fixes

  • BZ - 2330689 - CVE-2024-52798 path-to-regexp: path-to-regexp Unpatched `path-to-regexp` ReDoS in 0.1.x
  • BZ - 2333122 - CVE-2024-45338 golang.org/x/net/html: Non-linear parsing of case-insensitive content in golang.org/x/net/html
  • DFBUGS-1343 - [Critical] Upgrade ceph version to RHCEPH-7.1z2Async at ODF-4.16.6

aarch64

odf4/mcg-core-rhel9@sha256:c6dd956575ad4674c7b16397881b02192e74a68b06a284512505a3b64eb854f8
odf4/mcg-rhel9-operator@sha256:4d1b0885a032eb0386b52dc2e4b63269805be8b72e723b3eb47c064bfae52eba
odf4/ocs-client-rhel9-operator@sha256:d267f0f1aee0312dde99fd70a15a884b43c02279c0632a2178d533432bbe9461
odf4/ocs-rhel9-operator@sha256:2b6fe587ae50e6493ff6a6a79e15a35e2e73a01bd5bb13e04bbc09884e4a18e4
odf4/odf-cli-rhel9@sha256:44bb94e61ef35b35870323286ba0e44ccbbd982b7ff7598cce235a9e49ac1bb1
odf4/odf-csi-addons-rhel9-operator@sha256:0b904e4f21204d317b0dbbb4a5a70d5bf00dc545287afbca2c31e71d08f4adf5
odf4/odf-csi-addons-sidecar-rhel9@sha256:d046e56748c3d4d22c66fed1b74b7e64d6ec7207ea9f2090a062f447158a607a
odf4/odf-multicluster-rhel9-operator@sha256:6d4a8073a4dd65b532fd9e24419a3279bfcb3147d66ba44aec72bc595394e292
odf4/odf-must-gather-rhel9@sha256:4f395a99fc0d99e4cbdcc9587a0d1c9837625527f393456b2eca9dcc23baa38d
odf4/odf-rhel9-operator@sha256:927689eef09218a7fc93b56f6bc67947d9e191c370e5ea0bd548b425a7c2bd15
odf4/odr-rhel9-operator@sha256:78767b63e283570de18cc708b574d4d5c41d2f2123e1de005cd7607f25d24a91

ppc64le

odf4/cephcsi-rhel9@sha256:7f8cf0a2c8bbd443d0e622cca11c703865caa1bd0db2967df9c97110bd4d0d68
odf4/mcg-core-rhel9@sha256:ebb412852fbe7e92e79d127eec23ffea311d979a53452fee744360924e9ca4b8
odf4/mcg-operator-bundle@sha256:430e279782fb9da7fcd793178019b29e514d6a9ec79c094c63c37c63688c466a
odf4/mcg-rhel9-operator@sha256:4fb9214ed75c65ff061e82605be0075c3d9bf5838301d67987913201e77913f6
odf4/ocs-client-console-rhel9@sha256:6ab86fc7fa0c88fb8e6efcbc5a5c6a5d0bfe9b55159b019eefa6cd4a74b8db1a
odf4/ocs-client-operator-bundle@sha256:b4a09ef6d4ace80d32a22542f0ea80831c0cba629d8d464b20a4ec41905f2f94
odf4/ocs-client-rhel9-operator@sha256:41cb93c2338dc78953dbfd2a03bc0055eb1274e224e9a6f673d1d4ddfcfd8a5a
odf4/ocs-metrics-exporter-rhel9@sha256:c6c919eb997590b0d2d26c67adcbcdb3266c9a4231c89355108dbe573d9c3ea0
odf4/ocs-operator-bundle@sha256:88a7095400493903bd2df6b5ddc1e629a9286db6d8a180d2cd395f16b3e6e886
odf4/ocs-rhel9-operator@sha256:591d9142ed2626f5764519ce01946aea79ee8733a308c231f5ab52bd9a535de1
odf4/odf-cli-rhel9@sha256:0841f52e81821c29939ff3fa9a65541f7550fa1408f080536d267696319dc628
odf4/odf-console-rhel9@sha256:5e80888e4331788c6ce01b0a5f2b7aca42a0f538fec5137592a3ebc900e28f62
odf4/odf-cosi-sidecar-rhel9@sha256:d4f4b62c903a8c811f43c5c3cad2f64e96b98cfa84d05d22dffdf11d3881f43f
odf4/odf-csi-addons-operator-bundle@sha256:64a99a1c356d92e4b17dbee8deb3e3e1928586a23093fb6f7544d094694fb306
odf4/odf-csi-addons-rhel9-operator@sha256:65dc0ff00ac4c90cc6e4ee88e2733613377fabb1c9785e43e1d0dc1364e08d23
odf4/odf-csi-addons-sidecar-rhel9@sha256:d7460455a3620b3f2f74bea1f1c0a8ce41ed26803abb83dac3b0e900463631aa
odf4/odf-multicluster-console-rhel9@sha256:8e975f03beec0bffa089d3fdd5bc5d5b05e5897713078b9074d81804a4a13fad
odf4/odf-multicluster-operator-bundle@sha256:d6fd73113063385d4a91f363aff07b7d57bc5f7ec27079332e34a44e132dc178
odf4/odf-multicluster-rhel9-operator@sha256:4602bcce33db48b77d662019dfd19097002d80cf425e146ec205d00dc2dba339
odf4/odf-must-gather-rhel9@sha256:b235d04a2f195cb5a59bfdbf49d4876c267b958ab2f8149996055021f4943b48
odf4/odf-operator-bundle@sha256:b4097595f23e4b61dd089979becd35160c9569accac73c8d887717ff21bcba19
odf4/odf-prometheus-operator-bundle@sha256:daa6aa054b9ad5f717897783713356987b3dde6214c3253114fc45ef0341b793
odf4/odf-rhel9-operator@sha256:2073aaf33d1fc12e604bf8fafce1a49542fa38f692f35b781902c307ff21112f
odf4/odr-cluster-operator-bundle@sha256:3200fdc282d52b0ec961845af2a52aa70c0de5fc3522d40bfe68f9a61826b964
odf4/odr-hub-operator-bundle@sha256:227f57d2484030db7832b06e2faf627da3b6f2354a570d41138be4547970b890
odf4/odr-recipe-operator-bundle@sha256:b6f773cb79ae39657af788303e396900094185394f42d94ec0bdfafb631c08de
odf4/odr-rhel9-operator@sha256:277a6d6601da36408b69852ce6a69c1bc5e6eb3c6ed9d4710270cd2c8584d426
odf4/rook-ceph-operator-bundle@sha256:e181b81b8073c83bb640b5838018a0d18d826a8f30398a6bd2656036aed20f29
odf4/rook-ceph-rhel9-operator@sha256:f3cb90d102212fa00818cf1ea1c59e8a03921f9aa17e0dd5c324c478fba653b5

s390x

odf4/cephcsi-rhel9@sha256:f3d8c9e20bbb0e6198e75f9e43e3202a1c0d544916edf8bd0f8d1972aef2d3c3
odf4/mcg-core-rhel9@sha256:9e7ebf4fe650f9d5c878dfc2198cc508490c183c4a3465599e34dc70f3b70f8d
odf4/mcg-operator-bundle@sha256:a5b9f7a37c7c0aecf71e3f7dc9e2a9581d7896eac5a35f50754a80a72ff44b3f
odf4/mcg-rhel9-operator@sha256:811a8d9a47b9d132418671c7e213762cd34a2a2b2b759b6931eb575b088e2187
odf4/ocs-client-console-rhel9@sha256:2b794d9978983c27bf182ab41b68a7d6af317c24dd6d18f0e9a5c996ed517ab4
odf4/ocs-client-operator-bundle@sha256:6f88ea51191777640caeea205c137d5701a76cca915936d6cb1db430cb218408
odf4/ocs-client-rhel9-operator@sha256:45d49023e0311fb35fcf23b31fe1640afc57cd542aea3059425c1099988f7127
odf4/ocs-metrics-exporter-rhel9@sha256:7761ea523604b13e6619d635beef2ec63fe8fecd961b3c639270f618c153b815
odf4/ocs-operator-bundle@sha256:3012cee1ce523cbd10a9e9ab51ac05aaff26e627567cdbb73d5c338731563f1d
odf4/ocs-rhel9-operator@sha256:810090516b38563a744150d00a16397b3fad08d624bac665c3ccd92a4a89ea76
odf4/odf-cli-rhel9@sha256:4ddf7d0277dcf6b81f809f932299a356af976efe9a491479ed88712c32481265
odf4/odf-console-rhel9@sha256:6ce1c5953079d4f8fd1b402862aacb50b50c527ac22c67d1361eda62cfd5a65e
odf4/odf-cosi-sidecar-rhel9@sha256:bfdd658ac80900f043d85e9c4e6e8d2f861d5ff32e7944afca64b7667aa70e71
odf4/odf-csi-addons-operator-bundle@sha256:6d948b47057a2a535f6abad94088549ceead684320282e6d17daef8ef8c1cad1
odf4/odf-csi-addons-rhel9-operator@sha256:0571a424e966882cc8f767bea1dc9cfc6e357e6829522831ccd187b9ca4052c7
odf4/odf-csi-addons-sidecar-rhel9@sha256:311a882ed3300b40f40985549ceb3dde78a641da3efed632932075a140688570
odf4/odf-multicluster-console-rhel9@sha256:ef2c518c580fb92679d42c9e29de4f3ebac2b8e18d855a836e229f1a92f2ca32
odf4/odf-multicluster-operator-bundle@sha256:35ec37b855a9d89ae5cdc475e086ec9c6110c3e095c3853f15884afcce983adf
odf4/odf-multicluster-rhel9-operator@sha256:8b8e7a1b04437728cf93540350fb39cd35d1f4ec42417203290598bd7eea13eb
odf4/odf-must-gather-rhel9@sha256:56c0e1cdd666d462927bb7896fb8205e789be27af76924e99a4fd0e2d1f92299
odf4/odf-operator-bundle@sha256:884d9589f14d72f1aa67f8c1f197dca8865f6d9386f6826672978442ca361123
odf4/odf-prometheus-operator-bundle@sha256:3b130bfc666fa019ac44342afb1f611adf3b8ea7590c722bd6351f9cf8edb1fe
odf4/odf-rhel9-operator@sha256:8ab5a47b58f34781de8866615be72f9051fd51a18c7450580e415c4682e81fe9
odf4/odr-cluster-operator-bundle@sha256:b2001d35131d7e51fc0e2a02c86fc9ce9dcf833d1c7958d42f0aa70731dd4d08
odf4/odr-hub-operator-bundle@sha256:01fc6a3dffa3c7030e118ace26f5051d118ff522b0e3a80eb3802ee23f2f02c3
odf4/odr-recipe-operator-bundle@sha256:d78de6347c815bc605ca4151f2cfa1f3b6da10e1c1a5545853fe7e2a4befa1e3
odf4/odr-rhel9-operator@sha256:f911ea02ba9a2f726be70bb8270f27d222490ebea2e709a6bcc2f517bd5375f1
odf4/rook-ceph-operator-bundle@sha256:8ce5e9717603aa1eb0eeb193d9c21f77e5ce2f2261047ef2f17aaa91ba0fd865
odf4/rook-ceph-rhel9-operator@sha256:6f2c0a3a974bddd27a814ca29831638c09d2a146e00fd5b44b8e8bab795001cc

x86_64

odf4/cephcsi-rhel9@sha256:45e01453d7b4b355a0fb100239523064e297006786113cf98875999c2e37c09f
odf4/mcg-core-rhel9@sha256:55724c08d8081f4da4d67359279bcec5cab634d0f788d4956c3a9c894a397243
odf4/mcg-operator-bundle@sha256:188d7aec109fa0958f5f39473df1991b074b8d885b9346926160ce9fc0ea9c62
odf4/mcg-rhel9-operator@sha256:03d94f5ac4a4f4f67cad1b6df5563d5431d3977475feccbb727e663a1f0d9d8c
odf4/ocs-client-console-rhel9@sha256:dc225bdb9a526ec70f6bdfb375a0335dcf8ad3e77990a15fb27b1d5f2a0b6f1e
odf4/ocs-client-operator-bundle@sha256:8977cbca3587a0ca9945fa320d604c72bae62d8adff5160c09f20d41d8f15ebd
odf4/ocs-client-rhel9-operator@sha256:3a423e686304d8f29ee0d214095c2029416885699b83d2df4abd7030668de0f3
odf4/ocs-metrics-exporter-rhel9@sha256:510c076c42564181e0dbf8e42c2d4445a9435a7c271625efb7ebbb5a25286c8a
odf4/ocs-operator-bundle@sha256:7e70726eaeab28881c10ceebe80cc7328c885b2a47203d746c2b6b7350ce7e7a
odf4/ocs-rhel9-operator@sha256:caa53ac8d82276a7abb71b65211e429863ace70ff475d770fecbf79d0cd64d61
odf4/odf-cli-rhel9@sha256:d32505b6dc26a3104e7e4c5a3cd58ca4d408b0fa407e9e4ae7614acbdb7142cc
odf4/odf-console-rhel9@sha256:6afb80eb2adae1830b3db88ca1c9535a52c61474bb059683bb6216e95b2b3764
odf4/odf-cosi-sidecar-rhel9@sha256:e0113f0a4a11b8d2028aa51838355b6f5b250c5202656568b75e5b185fd6be1a
odf4/odf-csi-addons-operator-bundle@sha256:cd45854b766aeb1937f88ccd153c8d1c789c6ac62d4107b5ada14e2d379d871d
odf4/odf-csi-addons-rhel9-operator@sha256:9eaf98fdac1951520ab1d3b331d61adea719e3376cdedcb5808043cd1ef017be
odf4/odf-csi-addons-sidecar-rhel9@sha256:4ccb61cb9afcea489ea1385fa83258a3b8b450b51c9d0c55230ffd8f5ee3702e
odf4/odf-multicluster-console-rhel9@sha256:f82cbd202caa4c573d9338e4ee365169851b863246b05ac8450543ebe5569307
odf4/odf-multicluster-operator-bundle@sha256:cf274d6746effa54b216c53b81027b61e1e500d46aeec6a8979fd6a4be01bfd7
odf4/odf-multicluster-rhel9-operator@sha256:91c0694dd13b64a6569f7d0eb08b00c605b2c2c9563db8a227432949897eecb0
odf4/odf-must-gather-rhel9@sha256:1cad0fbcc7146417853677c49fa9b1389ab8c274667208e5e35def8b6a741283
odf4/odf-operator-bundle@sha256:32e93e146c2775ee79d1492aa2bf272d2ee86ee3aec32baf316a84e1f3738c00
odf4/odf-prometheus-operator-bundle@sha256:d87e13d2909376661fc136e9ce8eb357f8ec33c5ba3378c1c21c1f054e8eb267
odf4/odf-rhel9-operator@sha256:7bda05c5078e546baf701afb405c38f2043d4af125fef7da780c1e976a35bef9
odf4/odr-cluster-operator-bundle@sha256:d7d9382fd85f52fc05c51fef04f7a512ead26f579eaca53b2ae67f4a51e1ff7f
odf4/odr-hub-operator-bundle@sha256:68dfd051ed2ec2596861426965e2be20b026be82035f13de422e26e89fa83f9c
odf4/odr-recipe-operator-bundle@sha256:7d38e14f4e27d3c6cc431471847091f42b470b6bb4925c7cb81aa89179f3d40a
odf4/odr-rhel9-operator@sha256:49a77565f5ebc37a174f879cb0ec1ce012caec26e27132cd2af698fbd75c4e76
odf4/rook-ceph-operator-bundle@sha256:16673625e1911f92efb90b8e57a0cd88bf80aee7838c8d635cae29b7aff5be45
odf4/rook-ceph-rhel9-operator@sha256:2424af24496f91b81108b44fc9cef2d5c0a63160b4860cc591d44f5e3f0f2039

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.