Redhat has released security updates to address multiple vulnerabilities in the following products:

• Red Hat OpenShift Container Platform 4.10 for RHEL 8 x86_64
• Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.0 x86_64
• Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.0 s390x
• Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.0 ppc64le
• Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.0 aarch64
• Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.0 ppc64le
• Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.0 x86_64
• Red Hat CodeReady Linux Builder for x86_64 - Extended Update Support 9.0 x86_64
• Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support 9.0 ppc64le
• Red Hat CodeReady Linux Builder for IBM z Systems - Extended Update Support 9.0 s390x
• Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support 9.0 aarch64
• Red Hat Enterprise Linux Server for ARM 64 - 4 years of updates 9.0 aarch64
• Red Hat Enterprise Linux Server for IBM z Systems - 4 years of updates 9.0 s390x

An attacker could exploit these vulnerabilities by doing the following:

• Information Disclosure
• Elevate Privileges

The CERT team encourages users to review RedHat security advisory and update the affected products:

• https://access.redhat.com/errata/RHSA-2023:4801
• https://access.redhat.com/errata/RHSA-2023:4835