Bug 1974760 - Include at OCS 4.6 container images the CVE fix on "glib2" from RHEL8
Summary: Include at OCS 4.6 container images the CVE fix on "glib2" from RHEL8
Keywords:
Status: CLOSED DUPLICATE of bug 1974765
Alias: None
Product: Red Hat OpenShift Container Storage
Classification: Red Hat Storage
Component: distribution
Version: 4.6
Hardware: Unspecified
OS: Unspecified
high
high
Target Milestone: ---
: ---
Assignee: Mudit Agarwal
QA Contact: Raz Tamir
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2021-06-22 13:41 UTC by Rejy M Cyriac
Modified: 2021-06-22 13:53 UTC (History)
7 users (show)

Fixed In Version:
Doc Type: No Doc Update
Doc Text:
Clone Of:
Environment:
Last Closed: 2021-06-22 13:53:22 UTC
Embargoed:

Attachments (Terms of Use)

Description Rejy M Cyriac 2021-06-22 13:41:41 UTC 
RHEL 8 has shipped "glib2" update with fixes for "Important" CVE


= RHSA-2021:2170 - Security Advisory
  == https://access.redhat.com/errata/RHSA-2021:2170


= CVE-2021-27219
  == https://access.redhat.com/security/cve/CVE-2021-27219


= Updated "glib2" build
  == glib2-2.56.4-10.el8_4


= RHEL8 Errata
  == https://errata.devel.redhat.com/advisory/76577


= Impacted OCS 4.x Container images
  == ocs-must-gather-container
  == ocs-operator-container
  == noobaa-core-container
  == noobaa-operator-container
  == cephcsi-container
  == rook-ceph-operator-container


The fix to 'Important' CVE on "glib2" is to be included at the impacted OCS container images, through inclusion of the relevant "glib2" update at the updated relevant OCS container images.
Comment 1 Mudit Agarwal 2021-06-22 13:53:22 UTC 

*** This bug has been marked as a duplicate of bug 1974765 ***
Note You need to log in before you can comment on or make changes to this bug.