Description:

Red Hat has released security updates to address multiple vulnerabilities in the following products:

• Red Hat OpenShift Container Storage 4.6 x86_64
• Red Hat OpenShift Container Storage 4 x86_64
• Red Hat OpenShift Container Storage for IBM Power, little endian 4.6 ppc64le
• Red Hat OpenShift Container Storage for IBM Power, little endian 4 ppc64le
• Red Hat OpenShift Container Storage for IBM Z and LinuxONE 4.6 s390x
• Red Hat OpenShift Container Storage for IBM Z and LinuxONE 4 s390xRed Hat JBoss Middleware Text-Only Advisories for MIDDLEWARE 1 x86_64
• Red Hat JBoss Core Services 1 for RHEL 8 x86_64
• Red Hat JBoss Core Services 1 for RHEL 7 x86_64Red Hat JBoss Core Services Text-Only Advisories x86_64
• Red Hat Enterprise Linux Server - AUS 7.6 x86_64
• Red Hat Enterprise Linux Server - TUS 7.6 x86_64
• Red Hat Enterprise Linux Server (for IBM Power LE) - Update Services for SAP Solutions 7.6 ppc64le
• Red Hat Enterprise Linux Server - Update Services for SAP Solutions 7.6 x86_64
• Red Hat Enterprise Linux Server - Extended Life Cycle Support 6 x86_64
• Red Hat Enterprise Linux Server - Extended Life Cycle Support 6 i386
• Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems) 6 s390x
  

Threats:

Attacker could exploit these vulnerabilities by doing the following:

• Bypass of a protection mechanism
• Execute arbitrary code
• Memory corruption

Best practice and Recommendations:

The CERT team encourages users to review Red Hat security advisory and apply the necessary updates:

• https://access.redhat.com/errata/RHSA-2021:2479
• https://access.redhat.com/errata/RHSA-2021:2476
• https://access.redhat.com/errata/RHSA-2021:2475
• https://access.redhat.com/errata/RHSA-2021:2472
• https://access.redhat.com/errata/RHSA-2021:2471
• https://access.redhat.com/errata/RHSA-2021:2469
• https://access.redhat.com/errata/RHSA-2021:2467