Bug 2249513
| Summary: | Include at ODF 4.13 container images (16) the RHEL9 CVE fix on "nghttp2" | ||
|---|---|---|---|
| Product: | [Red Hat Storage] Red Hat OpenShift Data Foundation | Reporter: | Rejy M Cyriac <rcyriac> |
| Component: | distribution | Assignee: | Mudit Agarwal <muagarwa> |
| Status: | CLOSED ERRATA | QA Contact: | Petr Balogh <pbalogh> |
| Severity: | high | Docs Contact: | |
| Priority: | unspecified | ||
| Version: | 4.13 | CC: | branto, jopinto, odf-bz-bot |
| Target Milestone: | --- | Keywords: | ZStream |
| Target Release: | ODF 4.13.5 | ||
| Hardware: | Unspecified | ||
| OS: | Unspecified | ||
| Whiteboard: | |||
| Fixed In Version: | Doc Type: | If docs needed, set a value | |
| Doc Text: | Story Points: | --- | |
| Clone Of: | Environment: | ||
| Last Closed: | 2023-12-13 12:58:30 UTC | Type: | Bug |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
|
Description
Rejy M Cyriac
2023-11-13 15:02:35 UTC
Verified with OCP 4.13 and ODF 4.13.5-10.rhceph61z3 ODF console container: curl-minimal-7.76.1-26.el9_3.2.x86_64 libcurl-minimal-7.76.1-26.el9_3.2.x86_64 odf4/ocs-metrics-exporter-rhel9: libcurl-minimal-7.76.1-26.el9_3.2.x86_64 curl-minimal-7.76.1-26.el9_3.2.x86_64 odf4/rook-ceph-rhel9-operator: libcurl-minimal-7.76.1-26.el9_3.2.x86_64 curl-minimal-7.76.1-26.el9_3.2.x86_64 odf4/cephcsi-rhel9: curl-minimal-7.76.1-26.el9_3.2.x86_64 libcurl-minimal-7.76.1-26.el9_3.2.x86_64 odf4/odf-csi-addons-rhel9-operator: libnghttp2-1.43.0-5.el9_3.1.x86_64 odf4/mcg-core-rhel9: curl-minimal-7.76.1-26.el9_3.2.x86_64 libcurl-minimal-7.76.1-26.el9_3.2.x86_64 odf4/mcg-rhel9-operator: curl-minimal-7.76.1-26.el9_3.2.x86_64 libcurl-minimal-7.76.1-26.el9_3.2.x86_64 odf4/ocs-rhel9-operator: curl-minimal-7.76.1-26.el9_3.2.x86_64 libcurl-minimal-7.76.1-26.el9_3.2.x86_64 odf4/odf-console-rhel9: curl-minimal-7.76.1-26.el9_3.2.x86_64 libcurl-minimal-7.76.1-26.el9_3.2.x86_64 odf-operator-controller-manager-d7b9cf74f-wcrkf-manager: curl-minimal-7.76.1-26.el9_3.2.x86_64 libcurl-minimal-7.76.1-26.el9_3.2.x86_64 odf4/ocs-metrics-exporter-rhel9: libnghttp2-1.43.0-5.el9_3.1.x86_64 odf4/rook-ceph-rhel9-operator: libnghttp2-1.43.0-5.el9_3.1.x86_64 odf4/cephcsi-rhel9: libnghttp2-1.43.0-5.el9_3.1.x86_64 odf4/odf-csi-addons-rhel9-operator: libnghttp2-1.43.0-5.el9_3.1.x86_64 odf4/mcg-core-rhel9: libnghttp2-1.43.0-5.el9_3.1.x86_64 odf4/mcg-rhel9-operator: libnghttp2-1.43.0-5.el9_3.1.x86_64 ocs-rhel9-operator: libnghttp2-1.43.0-5.el9_3.1.x86_64 odf-console-rhel9: libnghttp2-1.43.0-5.el9_3.1.x86_64 odf4/odf-rhel9-operator: libnghttp2-1.43.0-5.el9_3.1.x86_64 The packages on above containers are as mentioned in https://access.redhat.com/errata/RHSA-2023:6746, Hence closing the bug Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory (Red Hat OpenShift Data Foundation 4.13.5 Bug Fix Update), and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://access.redhat.com/errata/RHBA-2023:7775 |