- Issued:
- 2023-07-27
- Updated:
- 2023-07-27
RHSA-2023:4290 - Moderate: OpenShift sandboxed containers 1.4.1 security update
Synopsis
Moderate: OpenShift sandboxed containers 1.4.1 security update
Type/Severity
Security Advisory Moderate
Topic
OpenShift sandboxed containers 1.4.1 is now available.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Description
OpenShift sandboxed containers support for OpenShift Container Platform provides users with built-in support for running Kata containers as an additional, optional runtime.
This advisory contains a security update for OpenShift sandboxed containers, as well as bug fixes.
Security fix:
- A compliance problem was found in the Red Hat OpenShift Container Platform. Red Hat discovered that when FIPS mode was enabled, not all of the cryptographic modules in use were FIPS-validated. (CVE-2023-3089)
For more information about the additional fixes in this release, see the Release Notes documentation:
Solution
Before applying this update, make sure all previously released errata relevant to your system have been applied.
For details on how to apply this update, refer to:
https://access.redhat.com/articles/11258
Affected Products
| Product | Version | Arch |
|---|---|---|
| Red Hat OpenShift Container Platform | 4.12 | x86_64 |
Fixes
- This content is not included.BZ - 2212085
- This content is not included.KATA-2212
- This content is not included.OCPBUGS-15175
- This content is not included.KATA-2121
- This content is not included.KATA-2299
CVEs
- CVE-2020-24736
- CVE-2021-46848
- CVE-2022-1271
- CVE-2022-1304
- CVE-2022-2509
- CVE-2022-3715
- CVE-2022-28805
- CVE-2022-34903
- CVE-2022-35737
- CVE-2022-36227
- CVE-2022-40303
- CVE-2022-40304
- CVE-2022-47629
- CVE-2023-0464
- CVE-2023-0465
- CVE-2023-0466
- CVE-2023-1255
- CVE-2023-1667
- CVE-2023-2283
- CVE-2023-2650
- CVE-2023-3089
- CVE-2023-24329
- CVE-2023-26604
References
- https://access.redhat.com/security/updates/classification/#moderate
- This content is not included.This content is not included.https://access.redhat.com/security/vulnerabilities/RHSB-2023-001
- https://access.redhat.com/documentation/en-us/openshift_sandboxed_containers/1.4/html-single/openshift_sandboxed_containers_release_notes/
Additional information
- The Red Hat security contact is This content is not included.secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.
- Offline Security Data data is available for integration with other systems. See Offline Security Data API to get started.