(RHSA-2023:6274) Moderate: OpenShift Container Platform 4.11.53 packages and security update

2023-11-0810:47:54

access.redhat.com

red hat

openshift

container platform

security update

ovn

cve-2023-3153

kubernetes

package

rpm

cloud computing

kubernetes application.

7.3 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

34.6%

JSON

Red Hat OpenShift Container Platform is Red Hat’s cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.

This advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.11.53. See the following advisory for the container images for this release:

https://access.redhat.com/errata/RHSA-2023:6272

Security Fix(es):

ovn: service monitor MAC flow is not rate limited (CVE-2023-3153)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

All OpenShift Container Platform 4.11 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.openshift.com/container-platform/4.11/updating/updating-cluster-cli.html

OSVersionArchitecturePackageVersionFilename
RedHat8aarch64kernel-tools-debuginfo< 4.18.0-372.78.1.el8_6kernel-tools-debuginfo-4.18.0-372.78.1.el8_6.aarch64.rpm
RedHat8ppc64leovn22.12< 22.12.1-18.el8fdpovn22.12-22.12.1-18.el8fdp.ppc64le.rpm
RedHat8x86_64kernel-rt-devel< 4.18.0-372.78.1.rt7.237.el8_6kernel-rt-devel-4.18.0-372.78.1.rt7.237.el8_6.x86_64.rpm
RedHat8aarch64kernel-modules-extra< 4.18.0-372.78.1.el8_6kernel-modules-extra-4.18.0-372.78.1.el8_6.aarch64.rpm
RedHat8aarch64ovn22.12-central< 22.12.1-18.el8fdpovn22.12-central-22.12.1-18.el8fdp.aarch64.rpm
RedHat8aarch64runc-debugsource< 1.1.2-2.1.rhaos4.11.el8runc-debugsource-1.1.2-2.1.rhaos4.11.el8.aarch64.rpm
RedHat8s390xbuildah-debuginfo< 1.23.4-3.1.rhaos4.11.el8buildah-debuginfo-1.23.4-3.1.rhaos4.11.el8.s390x.rpm
RedHat8ppc64lepodman-debuginfo< 4.0.2-7.1.rhaos4.11.el8podman-debuginfo-4.0.2-7.1.rhaos4.11.el8.ppc64le.rpm
RedHat8aarch64butane-debuginfo< 0.15.0-3.1.rhaos4.11.el8butane-debuginfo-0.15.0-3.1.rhaos4.11.el8.aarch64.rpm
RedHat8ppc64leignition-debugsource< 2.14.0-5.1.rhaos4.11.el8ignition-debugsource-2.14.0-5.1.rhaos4.11.el8.ppc64le.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	8	aarch64	kernel-tools-debuginfo	< 4.18.0-372.78.1.el8_6	kernel-tools-debuginfo-4.18.0-372.78.1.el8_6.aarch64.rpm
RedHat	8	ppc64le	ovn22.12	< 22.12.1-18.el8fdp	ovn22.12-22.12.1-18.el8fdp.ppc64le.rpm
RedHat	8	x86_64	kernel-rt-devel	< 4.18.0-372.78.1.rt7.237.el8_6	kernel-rt-devel-4.18.0-372.78.1.rt7.237.el8_6.x86_64.rpm
RedHat	8	aarch64	kernel-modules-extra	< 4.18.0-372.78.1.el8_6	kernel-modules-extra-4.18.0-372.78.1.el8_6.aarch64.rpm
RedHat	8	aarch64	ovn22.12-central	< 22.12.1-18.el8fdp	ovn22.12-central-22.12.1-18.el8fdp.aarch64.rpm
RedHat	8	aarch64	runc-debugsource	< 1.1.2-2.1.rhaos4.11.el8	runc-debugsource-1.1.2-2.1.rhaos4.11.el8.aarch64.rpm
RedHat	8	s390x	buildah-debuginfo	< 1.23.4-3.1.rhaos4.11.el8	buildah-debuginfo-1.23.4-3.1.rhaos4.11.el8.s390x.rpm
RedHat	8	ppc64le	podman-debuginfo	< 4.0.2-7.1.rhaos4.11.el8	podman-debuginfo-4.0.2-7.1.rhaos4.11.el8.ppc64le.rpm
RedHat	8	aarch64	butane-debuginfo	< 0.15.0-3.1.rhaos4.11.el8	butane-debuginfo-0.15.0-3.1.rhaos4.11.el8.aarch64.rpm
RedHat	8	ppc64le	ignition-debugsource	< 2.14.0-5.1.rhaos4.11.el8	ignition-debugsource-2.14.0-5.1.rhaos4.11.el8.ppc64le.rpm