تحديثات Red Hat
1727تاريخ التحذير
مستوى الخطورة
رقم التحذير
القطاع المستهدف
19 أغسطس, 2021
● عالي
2021-3393
الكل
الوصف:
أصدرت Red Hat عدة تحديثات لمعالجة عدد من الثغرات في المنتجات التالية:
- Red Hat OpenShift Service Mesh 1.1.17 Containers
- Red Hat OpenShift Service Mesh 1.1 for RHEL 8 x86_64
- Red Hat OpenShift Service Mesh 1.1 for RHEL 7 x86_64
- Red Hat OpenShift Service Mesh for Power 1.1 for RHEL 8 ppc64le
- Red Hat OpenShift Service Mesh for Power 1.1 for RHEL 7 ppc64le
- Red Hat OpenShift Service Mesh for IBM Z 1.1 for RHEL 8 s390x
- Red Hat OpenShift Service Mesh for IBM Z 1.1 for RHEL 7 s390x
- Red Hat OpenShift Service Mesh 1.1.17 RPMs
- Red Hat OpenShift Service Mesh 1.1 for RHEL 8 x86_64
- Red Hat OpenShift Service Mesh for Power 1.1 for RHEL 8 ppc64le
- Red Hat OpenShift Service Mesh for IBM Z 1.1 for RHEL 8 s390x
- OpenShift Container Platform 4.7.z
- Red Hat OpenShift Container Platform 4.7 for RHEL 8 x86_64
- Red Hat OpenShift Container Platform 4.7 for RHEL 7 x86_64
- Red Hat OpenShift Container Platform for Power 4.7 for RHEL 8 ppc64le
- Red Hat OpenShift Container Platform for Power 4.7 for RHEL 7 ppc64le
- Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.7 for RHEL 8 s390x
- Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.7 for RHEL 7 s390x
- EAP XP 3.0 OpenShift Image
- Red Hat OpenShift Container Platform 4.7 for RHEL 8 x86_64
- Red Hat OpenShift Container Platform 4.6 for RHEL 8 x86_64
- EAP 7.4.0.GA OpenShift
- Red Hat OpenShift Container Platform 4.7 for RHEL 8 x86_64
- Red Hat OpenShift Container Platform 4.6 for RHEL 8 x86_64
- Red Hat OpenShift Container Platform 3.11 x86_64
- Red Hat JBoss Enterprise Application Platform 7.4
- JBoss Enterprise Application Platform 7.4 for RHEL 8 x86_64
- JBoss Enterprise Application Platform 7.4 for RHEL 7 x86_64
- JBoss Enterprise Application Platform Text-Only Advisories x86_64
- Red Hat JBoss Enterprise Application Platform 7.3
- JBoss Enterprise Application Platform 7.3 for RHEL 8 x86_64
- JBoss Enterprise Application Platform 7.3 for RHEL 7 x86_64
- JBoss Enterprise Application Platform 7.3 for RHEL 6 x86_64
- JBoss Enterprise Application Platform Text-Only Advisories x86_64
- Red Hat build of Eclipse Vert.x 4.1.2
- Red Hat Openshift Application Runtimes Text-Only Advisories x86_64
- Red Hat Enterprise Linux 8 container images
- Red Hat Enterprise Linux for x86_64 8 x86_64
- .NET Core 3.1 containers
- dotNET on RHEL (for RHEL Server) 1 x86_64
- dotNET on RHEL (for RHEL Workstation) 1 x86_64
- dotNET on RHEL (for RHEL Compute Node) 1 x86_64
- Red Hat Advanced Cluster Management 2.2.7
- Red Hat Advanced Cluster Management for Kubernetes 2 for RHEL 8 x86_64
- Red Hat Advanced Cluster Management for Kubernetes 2 for RHEL 7 x86_64
- RHEL-8 based Middleware Containers container
- Red Hat OpenShift Container Platform 4.7 for RHEL 8 x86_64
- Red Hat OpenShift Container Platform for Power 4.7 for RHEL 8 ppc64le
- Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.7 for RHEL 8 s390x
- RHEL8-based OpenJDK S2I Images for OpenShift
- Red Hat OpenShift Container Platform 4.7 for RHEL 8 x86_64
- Red Hat OpenShift Container Platform for Power 4.7 for RHEL 8 ppc64le
- Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.7 for RHEL 8 s390x
- RHEL7-based OpenJDK S2I Images for OpenShift
- Red Hat OpenShift Container Platform 4.7 for RHEL 7 x86_64
- Red Hat OpenShift Container Platform for Power 4.7 for RHEL 7 ppc64le
- Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.7 for RHEL 7 s390x
- Red Hat Integration Camel Quarkus Tech-Preview 2
- Red Hat Integration Text-Only Advisories x86_64
- Camel K 1.4 GA
- Red Hat OpenShift Container Platform 4.7 for RHEL 8 x86_64
- Red Hat OpenShift Container Platform 4.6 for RHEL 8 x86_64
- Red Hat Integration Camel-K 1.4
- Red Hat Integration Text-Only Advisories x86_64
- RHEL-8 based Middleware Containers
- Red Hat OpenShift Container Platform for Power 4.7 for RHEL 8 ppc64le
- Red Hat OpenShift Container Platform for Power 4.6 for RHEL 8 ppc64le
- Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.7 for RHEL 8 s390x
- Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.6 for RHEL 8 s390x
- Red Hat Ansible Automation Platform 2.0.0 Container
- Red Hat Ansible Automation Platform Early Access 2.0 x86_64
- cloudforms50/cfme-amazon-smartstate
- Red Hat CloudForms 5.11 x86_64
التهديدات:
يمكن للمهاجم استغلال الثغرات وتنفيذ ما يلي:
- الكشف عن المعلومات
- أعطال في الذاكرة
- هجمة حجب الخدمة (DoS)
- تنفيذ برمجيات خبيثة
الإجراءات الوقائية:
يوصي المركز بتحديث النسخ المتأثرة حيث أصدرتRed Hat توضيحًا لهذه التحديثات:
- https://access.redhat.com/errata/RHBA-2021:3223
- https://access.redhat.com/errata/RHBA-2021:3222
- https://access.redhat.com/errata/RHBA-2021:3195
- https://access.redhat.com/errata/RHEA-2021:3221
- https://access.redhat.com/errata/RHEA-2021:3220
- https://access.redhat.com/errata/RHSA-2021:3219
- https://access.redhat.com/errata/RHSA-2021:3218
- https://access.redhat.com/errata/RHSA-2021:3217
- https://access.redhat.com/errata/RHSA-2021:3216
- https://access.redhat.com/errata/RHSA-2021:3125
- https://access.redhat.com/errata/RHBA-2021:3213
- https://access.redhat.com/errata/RHBA-2021:3212
- https://access.redhat.com/errata/RHBA-2021:3211
- https://access.redhat.com/errata/RHBA-2021:3210
- https://access.redhat.com/errata/RHEA-2021:3209
- https://access.redhat.com/errata/RHEA-2021:3208
- https://access.redhat.com/errata/RHSA-2021:3207
- https://access.redhat.com/errata/RHBA-2021:3206
- https://access.redhat.com/errata/RHSA-2021:3205
- https://access.redhat.com/errata/RHEA-2021:3204
- https://access.redhat.com/errata/RHBA-2021:3203
- https://access.redhat.com/errata/RHBA-2021:3202