Red Hat Product Errata RHSA-2025:7451 - Security Advisory
Issued:
2025-05-14
Updated:
2025-05-14

RHSA-2025:7451 - Security Advisory

Synopsis

Important: Logging for Red Hat OpenShift - 5.8.20

Type/Severity

Security Advisory: Important

Topic

Logging for Red Hat OpenShift - 5.8.20

Description

Logging for Red Hat OpenShift - 5.8.20
logging-loki-container: Non-linear parsing of case-insensitive content in golang.org/x/net/html (CVE-2024-45338)

Solution

For OpenShift Container Platform 4.13 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:

https://docs.redhat.com/en/documentation/openshift_container_platform/4.13/html/release_notes/ocp-4-13-release-notes

For Red Hat OpenShift Logging 5.8, see the following instructions to apply this update:

https://docs.redhat.com/en/documentation/openshift_container_platform/4.13/html/logging/cluster-logging-upgrading

Affected Products

  • Logging Subsystem for Red Hat OpenShift for ARM 64 5 for RHEL 9 aarch64
  • Logging Subsystem for Red Hat OpenShift 5 for RHEL 9 x86_64
  • Logging Subsystem for Red Hat OpenShift for IBM Power, little endian 5 for RHEL 9 ppc64le
  • Logging Subsystem for Red Hat OpenShift for IBM Z and LinuxONE 5 for RHEL 9 s390x

Fixes

  • BZ - 2333122 - CVE-2024-45338 golang.org/x/net/html: Non-linear parsing of case-insensitive content in golang.org/x/net/html
  • LOG-7055 - [release-5.8] Upgrade to Loki v3.4.2

aarch64

openshift-logging/cluster-logging-rhel9-operator@sha256:b6155a594bfd60a6fc6cc59d5ca86725a42cb21fd6124cd5a5a01b3fe8f533dd
openshift-logging/elasticsearch-proxy-rhel9@sha256:5a3854fcc9f564f21d97d37db83ec8d785a17c4e51f73594cf32b456245238c0
openshift-logging/elasticsearch-rhel9-operator@sha256:98b86529b6d8080162d6b77a6719fb2bd36a4fb8751c48fd049b802f5bad45af
openshift-logging/elasticsearch6-rhel9@sha256:4784f7f515b5be02e27d6223cae12468867f5371c37cc98dff687aae21bae329
openshift-logging/eventrouter-rhel9@sha256:ae3ecd9fb35257f71a71be42315adb35564e43ec86a99c18d749c5024d986ea1
openshift-logging/fluentd-rhel9@sha256:efbcf1668a296effa17dff8b83056fcf0c9e45c28b45084844e7504d21a849cf
openshift-logging/log-file-metric-exporter-rhel9@sha256:eb97cdc6d567ecf68b480ad7ab7054caa96a0b4534dcc78c61df83bb0fa2f8d7
openshift-logging/logging-curator5-rhel9@sha256:67f94145a551909f425646749b4507b572a27322b40c12d90ab63c772dbf3a49
openshift-logging/logging-loki-rhel9@sha256:10f90b593a0dbb8a045a3852dbf6db84cab562292ebb21b6bfdb40988a365a6f
openshift-logging/logging-view-plugin-rhel9@sha256:9a0afe579de5a97b180471fcac07164c8973b0a2ac468f1fcc60bfe8e73055be
openshift-logging/loki-rhel9-operator@sha256:47f784cbd2978a9f63b526b7ab126dc9295e19261fd6041a2dd8f844df19226c
openshift-logging/lokistack-gateway-rhel9@sha256:2c9b9dcee9c1f68a9623af9416ec30faadc34e93c9019be3d78afe48fb6931f0
openshift-logging/opa-openshift-rhel9@sha256:5a040e682b641c9e0ec5b796247f9cd9a9de7f4cca6da914d853d1b381419bb2
openshift-logging/vector-rhel9@sha256:cbafa22159adc2d6587457050173e489b05defca5f15d9cede58c324201857f5

ppc64le

openshift-logging/cluster-logging-rhel9-operator@sha256:12679926dba098797bb1f48758828316d051ccece87e5c80d2093ffb1b75ff2f
openshift-logging/elasticsearch-proxy-rhel9@sha256:8326d5e64cddbbe916127a188b0a8099b18ea138b2f32dfa47163a116ee8d7ea
openshift-logging/elasticsearch-rhel9-operator@sha256:43152d9d16545271d3c14db9c464403342b59f5695a0d33956c3738806809b3b
openshift-logging/elasticsearch6-rhel9@sha256:08f438f75a4062e815b8f7beb25abe183bc050addfea1704b913ee450b9b6c56
openshift-logging/eventrouter-rhel9@sha256:064835972754aadba23e52f1993d39ff074bad3d5e30e6d02566034bb33b0aa7
openshift-logging/fluentd-rhel9@sha256:7c1d863dc19bbaa865cd427f2f8a2992d44ff6309c65a8c861da0f45186afe62
openshift-logging/log-file-metric-exporter-rhel9@sha256:16784d0241100a65ac0b10f42b96327f29ee09c227e6bc4de75c40d552cbfbfe
openshift-logging/logging-curator5-rhel9@sha256:6ea9294d1c3158b358514a334ed1042d51a8a91e13c4d5ed8269b5ce363a28d3
openshift-logging/logging-loki-rhel9@sha256:1c0bcef8d45498b5fcf64c2a7ac44370e98a31256728bf4575033a148fbb784d
openshift-logging/logging-view-plugin-rhel9@sha256:a5ae768dcf4ad7feb81b36e6563863ec8e88d654cfa6b5292c880942bafb49ae
openshift-logging/loki-rhel9-operator@sha256:a9a4f376a0109512f07e15f5521416b4b5583f21add6526de4d67f78f0b5e3af
openshift-logging/lokistack-gateway-rhel9@sha256:dc2d66616bdf03a31515e3db5651d1976483f90d3e7e82a6bfb5bc41e556eff7
openshift-logging/opa-openshift-rhel9@sha256:2915af12c5bb1ef49a318fd62b824b3500ae45524159b4679d8bff07540309a7
openshift-logging/vector-rhel9@sha256:ebc096afca3fbc16da6098e0431a4aed3163c96177e8c7c7127325941685cfb8

s390x

openshift-logging/cluster-logging-rhel9-operator@sha256:90f02ddd719b104b18cf70222488147ba125787b7d3901dbb7711caab48319d9
openshift-logging/elasticsearch-proxy-rhel9@sha256:cb4cf0dc9aa0f261e49c055a12c0cf948c58d4471c07155a62da9c8c262f5a95
openshift-logging/elasticsearch-rhel9-operator@sha256:1f90c505d72ea0c0636e728920263144eee7ca5023cd2d30243addd0e412f488
openshift-logging/elasticsearch6-rhel9@sha256:f1ee2ff96e365d7348659a319ed47f7677eedd0f307b1eb5c6037360d1208beb
openshift-logging/eventrouter-rhel9@sha256:977b1bc0fd5fd54fb04e22cf30894ae26c67a7b200fae157cd90eab598815198
openshift-logging/fluentd-rhel9@sha256:0c9b212ea137ca9da9fd23c499fb6b14109991eea8c91bc78c12275bfab2c4a7
openshift-logging/log-file-metric-exporter-rhel9@sha256:6d9c232dcb1bd39b920b6a49cf5d44a8b4742de37498b6e4ee09d4e7e11aa0d8
openshift-logging/logging-curator5-rhel9@sha256:d3065d2a2bad57a929ad4cf549f6bb115c7e2a141326faec7291afbc89042001
openshift-logging/logging-loki-rhel9@sha256:8e5a053b857c7a5d491faa5f9fe955f85eec2ef1c2c410607e4a5d8b96b6d4c7
openshift-logging/logging-view-plugin-rhel9@sha256:dbe433c2fa53a86e7809ec96e276f87359e590fdfe7d0f60644dcacfc30514e1
openshift-logging/loki-rhel9-operator@sha256:9d2f233020dc704362fe8ae7b26a2c5cd06769fc45d461fbecdb26bb20f8cd8d
openshift-logging/lokistack-gateway-rhel9@sha256:7ff88a73951576ad38d66b7cadac00df3468cedfeca347c5ba3611388b59ab8a
openshift-logging/opa-openshift-rhel9@sha256:0f41cd2da59ab820c24a4500a8ce8e031bf0d9248526b98bc960db3d479b50a6
openshift-logging/vector-rhel9@sha256:501d5651525508e99f6450838980493abdbdb23add023f0382a4e3e2cf5b10f3

x86_64

openshift-logging/cluster-logging-operator-bundle@sha256:b1ec0d12c52f251e22a44ae8dcaa4e476e266256ac75b90694861c61043633f3
openshift-logging/cluster-logging-rhel9-operator@sha256:faa69781a7bf584615f0a89142c129c9c4ba432c4ce09db7372c150259cb477e
openshift-logging/elasticsearch-operator-bundle@sha256:2380036850b8275eebe7b4366fd2309d0c5526e980f6fc5b05da5ee1ba87ed8b
openshift-logging/elasticsearch-proxy-rhel9@sha256:3ed36907bbe76c92ac909fcddb3680c9f24f99a002ebcd606d6879f4decfb535
openshift-logging/elasticsearch-rhel9-operator@sha256:a7ff008c26df458923978477fa1c41bb8bc2aedc15b9ecf54943c62a3874b118
openshift-logging/elasticsearch6-rhel9@sha256:4d9ec7d11cc8f9e3dcfeba4d1014fd91663c75805465da9e627c75ec46230d6d
openshift-logging/eventrouter-rhel9@sha256:142e076ca1cbc24900ed9de4db4af80552a13d853ad76f1f9d7a99677e24d317
openshift-logging/fluentd-rhel9@sha256:43f9c45a75c310c27d99ac2cb398c871a9e38a944e6af7f2a70b588dc5c2ba72
openshift-logging/log-file-metric-exporter-rhel9@sha256:cb6fa02d3a47d9e83359f26a23990d75714764a09214dd30a2032dc3e17ab460
openshift-logging/logging-curator5-rhel9@sha256:6e414dd62cf30e87a3f3b398919cb5f2c54557abb21648708283d3377aed5d84
openshift-logging/logging-loki-rhel9@sha256:d922db949531456c08e8fcae03e37c2b5d4a831c8d146a55d175d06a0928e404
openshift-logging/logging-view-plugin-rhel9@sha256:7555635670b6855d96c4b06b087281c54d08cabb0641848c358327c5b7f63d05
openshift-logging/loki-operator-bundle@sha256:8763172c702a8db5852bef64ddfa6c3824a7b5ebc139a8856de7cd318f6829f5
openshift-logging/loki-rhel9-operator@sha256:db5321668ef1413113bad7b2c98add5e7830e9a8902e94ab792e609e3ec1426d
openshift-logging/lokistack-gateway-rhel9@sha256:69a35acabfdb2f85915aa625adb227519c731433aaddeecb0d982803a92aecdf
openshift-logging/opa-openshift-rhel9@sha256:a942344f90ed207ceadbe8b02c1bb551ba6b46d4609a93f8c797366bb866751f
openshift-logging/vector-rhel9@sha256:6e21081ec99e23ec095c724707dc72042ba0cdceed3e737a2fd65179629ff2de

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.