What versions of Red Hat OpenShift Container Platform are affected by RHBA-2023:1649?

Red Hat OpenShift Container Platform 4.11.35 is affected by RHBA-2023:1649.

How do I remediate the vulnerabilities listed in RHBA-2023:1649?

To remediate the vulnerabilities in RHBA-2023:1649, update to the fixed versions of the affected packages such as cri-o 1.24.5-2, haproxy 2.2.24-3, and kernel-rt 4.18.0-372.51.1.

Is RHBA-2023:1649 critical for my Red Hat OpenShift deployment?

The severity of RHBA-2023:1649 varies but it is essential to apply updates to maintain security and stability.

What are the implications of not applying RHBA-2023:1649?

Failure to apply RHBA-2023:1649 may leave your environment vulnerable to security issues and may impact performance.

Where can I find more details about RHBA-2023:1649?

Detailed information and specifics regarding RHBA-2023:1649 can be found in Red Hat's advisory documentation.

Vulnerability/
RHBA-2023:1649

12/4/2023

RHBA-2023:1649: OpenShift Container Platform 4.11.35 packages and security update

First published: Wed Apr 12 2023(Updated: )

Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.11.35. See the following advisory for the container images for this release: <a href="https://access.redhat.com/errata/RHBA-2023:1650" target="_blank">https://access.redhat.com/errata/RHBA-2023:1650</a> All OpenShift Container Platform 4.11 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift Console or the CLI oc command. Instructions for upgrading a cluster are available at <a href="https://docs.openshift.com/container-platform/4.11/updating/updating-cluster-cli.html" target="_blank">https://docs.openshift.com/container-platform/4.11/updating/updating-cluster-cli.html</a>

Affected Software	Affected Version	How to fix
redhat/cri-o	<1.24.5-2.rhaos4.11.gitb007cb6.el8	1.24.5-2.rhaos4.11.gitb007cb6.el8
redhat/haproxy	<2.2.24-3.rhaos4.11.el8	2.2.24-3.rhaos4.11.el8
redhat/kernel-rt	<4.18.0-372.51.1.rt7.208.el8_6	4.18.0-372.51.1.rt7.208.el8_6
redhat/openshift	<4.11.0-202304042055.p0.g8f6c8a6.assembly.stream.el8	4.11.0-202304042055.p0.g8f6c8a6.assembly.stream.el8
redhat/cri-o	<1.24.5-2.rhaos4.11.gitb007cb6.el8	1.24.5-2.rhaos4.11.gitb007cb6.el8
redhat/cri-o-debuginfo	<1.24.5-2.rhaos4.11.gitb007cb6.el8	1.24.5-2.rhaos4.11.gitb007cb6.el8
redhat/cri-o-debugsource	<1.24.5-2.rhaos4.11.gitb007cb6.el8	1.24.5-2.rhaos4.11.gitb007cb6.el8
redhat/haproxy-debugsource	<2.2.24-3.rhaos4.11.el8	2.2.24-3.rhaos4.11.el8
redhat/haproxy22	<2.2.24-3.rhaos4.11.el8	2.2.24-3.rhaos4.11.el8
redhat/haproxy22-debuginfo	<2.2.24-3.rhaos4.11.el8	2.2.24-3.rhaos4.11.el8
redhat/kernel-rt	<4.18.0-372.51.1.rt7.208.el8_6	4.18.0-372.51.1.rt7.208.el8_6
redhat/kernel-rt-core	<4.18.0-372.51.1.rt7.208.el8_6	4.18.0-372.51.1.rt7.208.el8_6
redhat/kernel-rt-debug	<4.18.0-372.51.1.rt7.208.el8_6	4.18.0-372.51.1.rt7.208.el8_6
redhat/kernel-rt-debug-core	<4.18.0-372.51.1.rt7.208.el8_6	4.18.0-372.51.1.rt7.208.el8_6
redhat/kernel-rt-debug-debuginfo	<4.18.0-372.51.1.rt7.208.el8_6	4.18.0-372.51.1.rt7.208.el8_6
redhat/kernel-rt-debug-devel	<4.18.0-372.51.1.rt7.208.el8_6	4.18.0-372.51.1.rt7.208.el8_6
redhat/kernel-rt-debug-kvm	<4.18.0-372.51.1.rt7.208.el8_6	4.18.0-372.51.1.rt7.208.el8_6
redhat/kernel-rt-debug-modules	<4.18.0-372.51.1.rt7.208.el8_6	4.18.0-372.51.1.rt7.208.el8_6
redhat/kernel-rt-debug-modules-extra	<4.18.0-372.51.1.rt7.208.el8_6	4.18.0-372.51.1.rt7.208.el8_6
redhat/kernel-rt-debug-modules-internal	<4.18.0-372.51.1.rt7.208.el8_6	4.18.0-372.51.1.rt7.208.el8_6
redhat/kernel-rt-debuginfo	<4.18.0-372.51.1.rt7.208.el8_6	4.18.0-372.51.1.rt7.208.el8_6
redhat/kernel-rt-devel	<4.18.0-372.51.1.rt7.208.el8_6	4.18.0-372.51.1.rt7.208.el8_6
redhat/kernel-rt-kvm	<4.18.0-372.51.1.rt7.208.el8_6	4.18.0-372.51.1.rt7.208.el8_6
redhat/kernel-rt-modules	<4.18.0-372.51.1.rt7.208.el8_6	4.18.0-372.51.1.rt7.208.el8_6
redhat/kernel-rt-modules-extra	<4.18.0-372.51.1.rt7.208.el8_6	4.18.0-372.51.1.rt7.208.el8_6
redhat/kernel-rt-modules-internal	<4.18.0-372.51.1.rt7.208.el8_6	4.18.0-372.51.1.rt7.208.el8_6
redhat/kernel-rt-selftests-internal	<4.18.0-372.51.1.rt7.208.el8_6	4.18.0-372.51.1.rt7.208.el8_6
redhat/openshift-hyperkube	<4.11.0-202304042055.p0.g8f6c8a6.assembly.stream.el8	4.11.0-202304042055.p0.g8f6c8a6.assembly.stream.el8
redhat/cri-o	<1.24.5-2.rhaos4.11.gitb007cb6.el8	1.24.5-2.rhaos4.11.gitb007cb6.el8
redhat/cri-o-debuginfo	<1.24.5-2.rhaos4.11.gitb007cb6.el8	1.24.5-2.rhaos4.11.gitb007cb6.el8
redhat/cri-o-debugsource	<1.24.5-2.rhaos4.11.gitb007cb6.el8	1.24.5-2.rhaos4.11.gitb007cb6.el8
redhat/haproxy-debugsource	<2.2.24-3.rhaos4.11.el8	2.2.24-3.rhaos4.11.el8
redhat/haproxy22	<2.2.24-3.rhaos4.11.el8	2.2.24-3.rhaos4.11.el8
redhat/haproxy22-debuginfo	<2.2.24-3.rhaos4.11.el8	2.2.24-3.rhaos4.11.el8
redhat/openshift-hyperkube	<4.11.0-202304042055.p0.g8f6c8a6.assembly.stream.el8	4.11.0-202304042055.p0.g8f6c8a6.assembly.stream.el8
redhat/cri-o-debuginfo	<1.24.5-2.rhaos4.11.gitb007cb6.el8	1.24.5-2.rhaos4.11.gitb007cb6.el8
redhat/cri-o-debugsource	<1.24.5-2.rhaos4.11.gitb007cb6.el8	1.24.5-2.rhaos4.11.gitb007cb6.el8
redhat/haproxy-debugsource	<2.2.24-3.rhaos4.11.el8	2.2.24-3.rhaos4.11.el8
redhat/haproxy22	<2.2.24-3.rhaos4.11.el8	2.2.24-3.rhaos4.11.el8
redhat/haproxy22-debuginfo	<2.2.24-3.rhaos4.11.el8	2.2.24-3.rhaos4.11.el8
redhat/openshift-hyperkube	<4.11.0-202304042055.p0.g8f6c8a6.assembly.stream.el8	4.11.0-202304042055.p0.g8f6c8a6.assembly.stream.el8
redhat/cri-o	<1.24.5-2.rhaos4.11.gitb007cb6.el8.aa	1.24.5-2.rhaos4.11.gitb007cb6.el8.aa
redhat/cri-o-debuginfo	<1.24.5-2.rhaos4.11.gitb007cb6.el8.aa	1.24.5-2.rhaos4.11.gitb007cb6.el8.aa
redhat/cri-o-debugsource	<1.24.5-2.rhaos4.11.gitb007cb6.el8.aa	1.24.5-2.rhaos4.11.gitb007cb6.el8.aa
redhat/haproxy-debugsource	<2.2.24-3.rhaos4.11.el8.aa	2.2.24-3.rhaos4.11.el8.aa
redhat/haproxy22	<2.2.24-3.rhaos4.11.el8.aa	2.2.24-3.rhaos4.11.el8.aa
redhat/haproxy22-debuginfo	<2.2.24-3.rhaos4.11.el8.aa	2.2.24-3.rhaos4.11.el8.aa
redhat/openshift-hyperkube	<4.11.0-202304042055.p0.g8f6c8a6.assembly.stream.el8.aa	4.11.0-202304042055.p0.g8f6c8a6.assembly.stream.el8.aa

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What versions of Red Hat OpenShift Container Platform are affected by RHBA-2023:1649?
Red Hat OpenShift Container Platform 4.11.35 is affected by RHBA-2023:1649.
How do I remediate the vulnerabilities listed in RHBA-2023:1649?
To remediate the vulnerabilities in RHBA-2023:1649, update to the fixed versions of the affected packages such as cri-o 1.24.5-2, haproxy 2.2.24-3, and kernel-rt 4.18.0-372.51.1.
Is RHBA-2023:1649 critical for my Red Hat OpenShift deployment?
The severity of RHBA-2023:1649 varies but it is essential to apply updates to maintain security and stability.
What are the implications of not applying RHBA-2023:1649?
Failure to apply RHBA-2023:1649 may leave your environment vulnerable to security issues and may impact performance.
Where can I find more details about RHBA-2023:1649?
Detailed information and specifics regarding RHBA-2023:1649 can be found in Red Hat's advisory documentation.

collector/redhat-errata
anchor-id/RHBA-2023:1649
agent/references
agent/title
agent/severity
agent/tags
agent/type
agent/event
agent/description
agent/first-publish-date
agent/softwarecombine
agent/remedy
agent/last-modified-date
package-manager/redhat