Security
Headlines
HeadlinesLatestCVEs

Headline

RHBA-2021:1167: Red Hat Bug Fix Advisory: Openshift Logging Bug Fix Release (5.0.2)

Openshift Logging Bug Fix Release (5.0.2)Openshift Logging Bug Fix Release (5.0.2) You use the Red Hat OpenShift Logging product to forward, store, and visualize log data from your cluster. Changes to the Red Hat OpenShift Logging product:

  • If you did not set .proxy in the cluster installation configuration, and then configured a global proxy on the installed cluster, a bug prevented Fluentd from forwarding logs to Elasticsearch. To work around this issue, in the proxy/cluster configuration, set no_proxy to .svc.cluster.local so it skips internal traffic. The current release fixes the proxy configuration issue. Now, if you configure the global proxy after installing an OpenShift cluster, Fluentd forwards logs to Elasticsearch. (LOG-1187, BZ#1915448)
  • Previously, forwarding logs to Kafka using chained certificates failed with error “state=error: certificate verify failed (unable to get local issuer certificate).” Logs could not be forwarded to a Kafka broker with a certificate signed by an intermediate CA. This happened because fluentd Kafka plugin could only handle a single CA certificate supplied in the ca-bundle.crt entry of the corresponding secret. The current release fixes this issue. It enables the fluentd Kafka plugin to handle multiple CA certificates supplied in the ca-bundle.crt entry of the corresponding secret. Now, logs can be forwarded to a Kafka broker with a certificate signed by an intermediate CA. (LOG-1216, LOG-1218, BZ#1904380)
  • Previously, an update in the cluster service version (CSV) accidentally introduced resource/limits for the OpenShift Elasticsearch operator container. Under specific conditions, this issue prevented the operator from being scheduled. The current release fixes this issue by removing the CSV resource/limits for the operator container. Now, the operator gets scheduled without issues. (LOG-1254, BZ#1944048) Related CVEs:
  • CVE-2021-3114: golang: crypto/elliptic: incorrect operations on the P-224 curve
Red Hat Security Data
Open in Source
#red_hat

Red Hat Security Data: Latest News

RHSA-2023:5627: Red Hat Security Advisory: kernel security, bug fix, and enhancement update
Red Hat Security Data