Red Hat Product Errata RHSA-2025:13276 - Security Advisory
Issued:
2025-08-07
Updated:
2025-08-07

RHSA-2025:13276 - Security Advisory

Synopsis

Important: updated RHEL-8 based Middleware Containers container images

Type/Severity

Security Advisory: Important

Topic

Updated RHEL-8 based Middleware Containers container images are now available

Description

The RHEL-8 based Middleware Containers container images have been updated to address the following security advisory: RHSA-2025:11534 (see References)

Users of RHEL-8 based Middleware Containers container images are advised to upgrade to these updated images, which contain backported patches to correct these security issues, fix these bugs and add these enhancements. Users of these images are also encouraged to rebuild all container images that depend on these images.

You can find images updated by this advisory in Red Hat Container Catalog (see References).

Solution

The RHEL-8 based Middleware Containers container images provided by this update can be downloaded from the Red Hat Container Registry at registry.access.redhat.com. Installation instructions for your platform are available at Red Hat Container Catalog (see References).

Dockerfiles and scripts should be amended either to refer to this new image specifically, or to the latest image generally.

Affected Products

  • Red Hat OpenShift Container Platform 4.12 for RHEL 8 x86_64
  • Red Hat OpenShift Container Platform 4.11 for RHEL 8 x86_64
  • Red Hat OpenShift Container Platform 4.10 for RHEL 8 x86_64

Fixes

  • BZ - 2279632 - CVE-2024-34397 glib2: Signal subscription vulnerabilities
  • BZ - 2325340 - CVE-2024-52533 glib: buffer overflow in set_connect_msg()
  • BZ - 2337824 - CVE-2024-50349 git: Git does not sanitize URLs when asking for credentials interactively
  • BZ - 2337956 - CVE-2024-52006 git: Newline confusion in credential helpers can lead to credential exfiltration in git
  • BZ - 2364265 - CVE-2025-4373 glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar
  • BZ - 2378806 - CVE-2025-48384 git: Git arbitrary code execution
  • BZ - 2378808 - CVE-2025-48385 git: Git arbitrary file writes
  • BZ - 2379124 - CVE-2025-27613 gitk: Git file creation flaw
  • BZ - 2379125 - CVE-2025-27614 gitk: git script execution flaw
  • BZ - 2379326 - CVE-2025-46835 git: Git GUI can create and overwrite files for which the user has write permission

x86_64

rhpam-7/rhpam-businesscentral-monitoring-rhel8@sha256:26a7fe83f3a34f02c2d0fdb0c67958166d79e47d264e7538e7c041c73af8406b
rhpam-7/rhpam-businesscentral-rhel8@sha256:b4804f253e75441ba011a85a38673f1499b11df42e7d63a5d850e2e7f99c4f63
rhpam-7/rhpam-controller-rhel8@sha256:b6344cd0cfa033dca638dffa1d6f05b1b44c49cec805a4bead4bb31e967152e7
rhpam-7/rhpam-dashbuilder-rhel8@sha256:47dacb456c1349638195e8d1a13224f63c1675199fc819803b50b617b9442c60
rhpam-7/rhpam-kieserver-rhel8@sha256:1b23a90b54af8f3d61cd9b1cad05cf30f0225af6d8cf1f833e21b0630623070a
rhpam-7/rhpam-operator-bundle@sha256:b005ca81fb10121bed0422266e415164d58fc48d85e1fe5b4d36a3a222c249f1
rhpam-7/rhpam-process-migration-rhel8@sha256:3c56a1235f0a61744b38b4b579b91b179ba07ae001ead41c64579bd9fd1b4f9c
rhpam-7/rhpam-rhel8-operator@sha256:add1edfb633e14a4d23794b80ca0d3f96720d33e11c132580d7b58bf29f9a167
rhpam-7/rhpam-smartrouter-rhel8@sha256:63fad8909d38e5f5e5bdb539f025bd95f1d2ec7cc6b6ee5e9b48e36036d19484

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.