Bug 1917938 - upgrade version of dnsmasq package
Summary: upgrade version of dnsmasq package
Keywords:
Status: CLOSED ERRATA
Alias: None
Product: OpenShift Container Platform
Classification: Red Hat
Component: Bare Metal Hardware Provisioning
Version: 4.7
Hardware: Unspecified
OS: Unspecified
urgent
urgent
Target Milestone: ---
: 4.7.0
Assignee: Riccardo Pittau
QA Contact: Lubov
URL:
Whiteboard:
Depends On:
Blocks: 1917937
TreeView+ depends on / blocked
 
Reported: 2021-01-19 17:42 UTC by Riccardo Pittau
Modified: 2021-02-24 15:54 UTC (History)
1 user (show)

Fixed In Version:
Doc Type: No Doc Update
Doc Text:
Clone Of:
Environment:
Last Closed: 2021-02-24 15:54:42 UTC
Target Upstream Version:
Embargoed:
lshilin: needinfo-


Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Github openshift ironic-image pull 140 0 None closed Bug 1917938: Update dnsmasq version 2021-02-02 08:46:53 UTC
Red Hat Product Errata RHSA-2020:5633 0 None None None 2021-02-24 15:54:59 UTC

Description Riccardo Pittau 2021-01-19 17:42:38 UTC
we need to set a minimum version of dnsmasq package with the fix for the security vulnerability described in https://access.redhat.com/security/vulnerabilities/RHSB-2021-001

Comment 2 Lubov 2021-01-31 09:08:26 UTC
Please, advice how to verify this

Comment 3 Lubov 2021-02-01 09:01:40 UTC
Verified on 4.7.0-0.nightly-2021-01-31-031653

$ oc exec -it metal3-7b4977849-srrs9 -c metal3-dnsmasq -- bash
[root@master-0-2 /]# rpm -qa dnsmasq
dnsmasq-2.79-13.el8_3.1.x86_64

Comment 6 errata-xmlrpc 2021-02-24 15:54:42 UTC
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (Moderate: OpenShift Container Platform 4.7.0 security, bug fix, and enhancement update), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHSA-2020:5633


Note You need to log in before you can comment on or make changes to this bug.