Issued:: 2025-01-29
Updated:: 2025-01-29

RHSA-2025:0821 - Security Advisory

Overview
Updated Images

Synopsis

Important: RHSA: Submariner 0.17.5 - bug and security fixes

Type/Severity

Security Advisory: Important

Topic

Submariner 0.17 packages that fix various bugs and add various enhancements that are now available for Red Hat Advanced Cluster Management for Kubernetes version 2.10

Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE links in the References section.

Description

Submariner enables direct networking between pods and services on different Kubernetes clusters that are either on-premises or in the cloud.

For more information about Submariner, see the Submariner open source community website at: https://submariner.io/.

This advisory contains bug fixes and enhancements to the Submariner container images.

Security fix(es):

golang.org/x/net/html: Non-linear parsing of case-insensitive content in
golang.org/x/net/html (CVE-2024-45338)

Solution

To learn more about Submariner, see https://docs.redhat.com/en/documentation/red_hat_advanced_cluster_management_for_kubernetes/2.10/html/networking/networking#submariner

Affected Products

Red Hat Advanced Cluster Management for Kubernetes 2 for RHEL 9 x86_64

Fixes

BZ - 2333122 - CVE-2024-45338 golang.org/x/net/html: Non-linear parsing of case-insensitive content in golang.org/x/net/html

CVEs

References

https://access.redhat.com/security/updates/classification/#important

aarch64

rhacm2/lighthouse-agent-rhel9@sha256:421cd4bdf6a2b777db88bd30306c244f031ce8d1bda1e1d0a4c1a2e06efa894d

rhacm2/lighthouse-coredns-rhel9@sha256:9b618fcda13cf564b721208cfd3b79acdb192d30b36b3af777f37c622362e448

rhacm2/nettest-rhel9@sha256:6fb7731f30940994e861b93f5de14dfe5bf2b7575bd9e1ea4de3adc5408764c1

rhacm2/subctl-rhel9@sha256:a540e3e8564f39a52c7fb6cc8f0f75ce5bd06dc9e867c76319969e0e60c398ab

rhacm2/submariner-gateway-rhel9@sha256:6111f0e06f12bfdb37d12a387b3a8c15e9de507e88732302d130eac31ec77386

rhacm2/submariner-globalnet-rhel9@sha256:193c3da59a968ac9ee24364f4919ac0e53321a781e837bd2861546e7a89ea3da

rhacm2/submariner-operator-bundle@sha256:7eb1f70c02b9bde1994382f49b75ac76910ea138f705065a8160f1ef57ba354e

rhacm2/submariner-rhel9-operator@sha256:96aea0087a673d033cc3604a8b80093ae1712a583845a9d5192cadfc110f7816

rhacm2/submariner-route-agent-rhel9@sha256:b666ed00c4b3fdb0e08a8709a073f45b3afa069d40ca23d1eaaaf7ae720e71ba

ppc64le

rhacm2/lighthouse-agent-rhel9@sha256:67e5f9bd236ef20707690b203530329fc0dbaa87a29485fa65b3b06880b3fe9e

rhacm2/lighthouse-coredns-rhel9@sha256:6c85a008a4072d5ece4df37f3769fb297e8e797f8035857676d9e4926a24d475

rhacm2/nettest-rhel9@sha256:2445c32c329d0401aba493758581bdeef9d2655378e0dc773aac348a2cc2b121

rhacm2/subctl-rhel9@sha256:b1674363b2837313b4d4700554455fa717642bd6edd587836df47b93a28c4404

rhacm2/submariner-gateway-rhel9@sha256:95b58a9927b65b24eaaab366407c053af37a598364050ce95189d8bb482a8782

rhacm2/submariner-globalnet-rhel9@sha256:2800d904c1d8d303510ef3caf34566a32491551d12b2ee56ea34a4e52de8989e

rhacm2/submariner-operator-bundle@sha256:5a64d238c64e2420f4edf2d2b8476c867a2731c3235767d6b184791a096bdcb3

rhacm2/submariner-rhel9-operator@sha256:4f350fce350111e99cb187b71bfd23c82f74bc617996d457b6f080778d8b4aed

rhacm2/submariner-route-agent-rhel9@sha256:102fcac86876bc6bf89ba595e4dbb521934573975e3598d2d5ae49e90c975a90

s390x

rhacm2/lighthouse-agent-rhel9@sha256:e62d11d4bd65278d1fab14bbc6b7088e1052658f7888e37108069afd34698ec2

rhacm2/lighthouse-coredns-rhel9@sha256:3a6b6f00b7ee6d96781091294570db5bdf342e59e3f82be0b48c4ccede01574d

rhacm2/nettest-rhel9@sha256:c627f97d1e609506d7fa3ff7c954e124a645ce03d193426c789af0d50cfefff1

rhacm2/subctl-rhel9@sha256:1a0de9e5e93cae73f1cf36ddf3b91f6bd78e32442b5adc4e51a860b498765814

rhacm2/submariner-gateway-rhel9@sha256:020fc34d826ff61e3d82df09961cacfae72a21577139233eed7ab7707a5c2a45

rhacm2/submariner-globalnet-rhel9@sha256:0dc382af713b76b9bfdb510126ddc4c1357cf611e73137f3a24acd985e09a3b3

rhacm2/submariner-operator-bundle@sha256:38369036047e3d3fb3f6df96b8bf4ca03b5398287cb369fd749d0d84b5a5f9e0

rhacm2/submariner-rhel9-operator@sha256:f858dc7195967662e9d3ee333c31f58f5f51e1239c8fc18f3b272fd5cd37ba45

rhacm2/submariner-route-agent-rhel9@sha256:a9195bab21f34884439796412ea2f591454d2f09bc6867f1f2c2538e7dbdea93

x86_64

rhacm2/lighthouse-agent-rhel9@sha256:494f6c44802ea9519735810b04568bb5eb0214b5f1e24de02514ef6f1a843463

rhacm2/lighthouse-coredns-rhel9@sha256:c5c1fada63f7ac49b10ccfc8267508e6cb8c42f9f66d38a730a7272124d29678

rhacm2/nettest-rhel9@sha256:dc04c2dced183f436028f31651119787ec35e6bd5a1b50413663a9552a46e0f9

rhacm2/subctl-rhel9@sha256:a3ae92768008d31f16e8cec0deb3dcc95826da75b8a0996dbaad15814ea68508

rhacm2/submariner-gateway-rhel9@sha256:f2055e6ff04d129303bcfc0feaa190c37a2068ba618ee661c99ff52be9b5f25c

rhacm2/submariner-globalnet-rhel9@sha256:817943f2ce35e8851f85c416f280798fe51436b8ecca52f99914918008fbc4ff

rhacm2/submariner-operator-bundle@sha256:5df48f539b9eec0fb629480d65ffac5c943d33ec96279135bee2bffc8b5c1892

rhacm2/submariner-rhel9-operator@sha256:e0a5852fdf490397486015c4a87ab6a400efd95292edcd06cc228e9f63c6c1f5

rhacm2/submariner-route-agent-rhel9@sha256:1ea14fc51769d9ad19189a78b21b63d6d54f2ad2f98e60641ade1844ab7b59a9

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

Runtimes

Integration and Automation