Headline
RHBA-2023:1759: Red Hat Bug Fix Advisory: OpenShift Container Platform 4.11.37 packages and security update
Red Hat OpenShift Container Platform release 4.11.37 is now available with updates to packages and images that fix several bugs.This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
Related CVEs:
- CVE-2023-25577: A flaw was found in python-werkzeug. Werkzeug is multipart form data parser, that will parse an unlimited number of parts, including file parts. These parts can be a small amount of bytes, but each requires CPU time to parse, and may use more memory as Python data. If a request can be made to an endpoint that accesses request.data, request.form, request.files, or request.get_data(parse_form_data=False), it can cause unexpectedly high resource usage, allowing an attacker to cause a denial of service by sending crafted multipart data to an endpoint that will parse it. The amount of CPU time required can block worker processes from handling legitimate requests, and if many concurrent requests are sent continuously, this can exhaust or kill all available workers.
Skip to navigation Skip to main content
Utilities
- Subscriptions
- Downloads
- Containers
- Support Cases
Infrastructure and Management
- Red Hat Enterprise Linux
- Red Hat Virtualization
- Red Hat Identity Management
- Red Hat Directory Server
- Red Hat Certificate System
- Red Hat Satellite
- Red Hat Subscription Management
- Red Hat Update Infrastructure
- Red Hat Insights
- Red Hat Ansible Automation Platform
Cloud Computing
- Red Hat OpenShift
- Red Hat CloudForms
- Red Hat OpenStack Platform
- Red Hat OpenShift Container Platform
- Red Hat OpenShift Data Science
- Red Hat OpenShift Online
- Red Hat OpenShift Dedicated
- Red Hat Advanced Cluster Security for Kubernetes
- Red Hat Advanced Cluster Management for Kubernetes
- Red Hat Quay
- Red Hat CodeReady Workspaces
- Red Hat OpenShift Service on AWS
Storage
- Red Hat Gluster Storage
- Red Hat Hyperconverged Infrastructure
- Red Hat Ceph Storage
- Red Hat OpenShift Data Foundation
Runtimes
- Red Hat Runtimes
- Red Hat JBoss Enterprise Application Platform
- Red Hat Data Grid
- Red Hat JBoss Web Server
- Red Hat Single Sign On
- Red Hat support for Spring Boot
- Red Hat build of Node.js
- Red Hat build of Thorntail
- Red Hat build of Eclipse Vert.x
- Red Hat build of OpenJDK
- Red Hat build of Quarkus
Integration and Automation
- Red Hat Process Automation
- Red Hat Process Automation Manager
- Red Hat Decision Manager
All Products
Issued:
2023-04-19
Updated:
2023-04-19
- Overview
- Updated Packages
Synopsis
OpenShift Container Platform 4.11.37 packages and security update
Type/Severity
Bug Fix Advisory
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory.
View affected systems
Topic
Red Hat OpenShift Container Platform release 4.11.37 is now available with
updates to packages and images that fix several bugs.
Description
Red Hat OpenShift Container Platform is Red Hat’s cloud computing Kubernetes application platform solution designed for on-premise or private
cloud deployments.
This advisory contains the RPM packages for Red Hat OpenShift Container
Platform 4.11.37. See the following advisory for the container images for
this release:
https://access.redhat.com/errata/RHBA-2023:1760
All OpenShift Container Platform 4.11 users are advised to upgrade to these
updated packages and images when they are available in the appropriate
release channel.To check for available updates, use the OpenShift CLI (oc)
or web console. Instructions for upgrading a cluster are available at
https://docs.openshift.com/container-platform/4.11/updating/updating-cluster-cli.html
Affected Products
- Red Hat OpenShift Container Platform 4.11 for RHEL 8 x86_64
- Red Hat OpenShift Container Platform for Power 4.11 for RHEL 8 ppc64le
- Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.11 for RHEL 8 s390x
- Red Hat OpenShift Container Platform for ARM 64 4.11 aarch64
Fixes
- OCPBUGS-11747 - Placeholder bug for OCP 4.11.0 rpm release
Red Hat OpenShift Container Platform 4.11 for RHEL 8
SRPM
atomic-openshift-service-idler-4.11.0-202304070715.p0.ga0f9090.assembly.stream.el8.src.rpm
SHA-256: dd70d8a3a2576a4a11433844648309e791a76bf9a94a5ed4dd64ce710927474a
openshift-4.11.0-202304082115.p0.gceaf338.assembly.stream.el8.src.rpm
SHA-256: 738b9aa73deaab10843f435062ad45f2ee93b77f98910e54e778b13fe5f2888e
openshift-ansible-4.11.0-202304070715.p0.gdf73941.assembly.stream.el8.src.rpm
SHA-256: 43afa5e443ee67e896f2ee41a1408ecc8f65c86d1a5070c11db1295ef12965c1
openshift-clients-4.11.0-202304070715.p0.gdea6f47.assembly.stream.el8.src.rpm
SHA-256: 7d313109e9779bd4e241048c66969068190a43fa5abce89943ac6b2e2c9a0610
openshift-kuryr-4.11.0-202304070715.p0.g93daed6.assembly.stream.el8.src.rpm
SHA-256: 9083e5b6362978f2a372288c6980e6b92a0ddc45d4eb87226b17740844430bec
python-werkzeug-2.0.3-5.el8.src.rpm
SHA-256: bf95a83415c23617dea7251028121e815af40068ad9daef1766e78c05af7cd0b
x86_64
atomic-openshift-service-idler-4.11.0-202304070715.p0.ga0f9090.assembly.stream.el8.x86_64.rpm
SHA-256: f220a087acc823d1f2eb5d86628a70186072016d7cef4e00ebc36e9bfb9f70cb
openshift-ansible-4.11.0-202304070715.p0.gdf73941.assembly.stream.el8.noarch.rpm
SHA-256: f44774dbf73e69db21f826f76369c493dd77617271856c9a8a54f446ef218232
openshift-ansible-test-4.11.0-202304070715.p0.gdf73941.assembly.stream.el8.noarch.rpm
SHA-256: 35f1b30823d7c173f6341d2aae7e6ccac1e6852e32ce4e08e9f87c69dfa63bd9
openshift-clients-4.11.0-202304070715.p0.gdea6f47.assembly.stream.el8.x86_64.rpm
SHA-256: 06c13797314d6e56b950e5a82dcb6e0940d4af096948e9c98d201d17e45901a1
openshift-clients-redistributable-4.11.0-202304070715.p0.gdea6f47.assembly.stream.el8.x86_64.rpm
SHA-256: 70fddca7804f37f54207b1a5593f51a299301494a6cf109e2e82ea62f47f445b
openshift-hyperkube-4.11.0-202304082115.p0.gceaf338.assembly.stream.el8.x86_64.rpm
SHA-256: 03ecf8e5f56bfc457957ae2d43abea88b0b63c2abcbdeb53cd5fab7a5e5ab06f
openshift-kuryr-cni-4.11.0-202304070715.p0.g93daed6.assembly.stream.el8.noarch.rpm
SHA-256: 529d8b4afcfd47eb1b28e6cdeab0febdd8dd53137e77c1dc4d412fead2999a8c
openshift-kuryr-common-4.11.0-202304070715.p0.g93daed6.assembly.stream.el8.noarch.rpm
SHA-256: 7f4340b24b6013e69ba6fdc72af0c0308f96b218c7f55e9416542ccf89d8144e
openshift-kuryr-controller-4.11.0-202304070715.p0.g93daed6.assembly.stream.el8.noarch.rpm
SHA-256: f21fe5f437634241e41ace23cb372cd2d06f4e3c39bce890f1ba777d8fc73f19
python3-kuryr-kubernetes-4.11.0-202304070715.p0.g93daed6.assembly.stream.el8.noarch.rpm
SHA-256: 5d2971eff2cae441a720bc02e112096581f7d62ac07d4bc4c7cda44e36fe6f61
python3-werkzeug-2.0.3-5.el8.noarch.rpm
SHA-256: 4f32639b59b22c0c2a1d5a552e1be9c74871ff4d1ad1cc80c543ed111468e143
Red Hat OpenShift Container Platform for Power 4.11 for RHEL 8
SRPM
atomic-openshift-service-idler-4.11.0-202304070715.p0.ga0f9090.assembly.stream.el8.src.rpm
SHA-256: dd70d8a3a2576a4a11433844648309e791a76bf9a94a5ed4dd64ce710927474a
openshift-4.11.0-202304082115.p0.gceaf338.assembly.stream.el8.src.rpm
SHA-256: 738b9aa73deaab10843f435062ad45f2ee93b77f98910e54e778b13fe5f2888e
openshift-ansible-4.11.0-202304070715.p0.gdf73941.assembly.stream.el8.src.rpm
SHA-256: 43afa5e443ee67e896f2ee41a1408ecc8f65c86d1a5070c11db1295ef12965c1
openshift-clients-4.11.0-202304070715.p0.gdea6f47.assembly.stream.el8.src.rpm
SHA-256: 7d313109e9779bd4e241048c66969068190a43fa5abce89943ac6b2e2c9a0610
openshift-kuryr-4.11.0-202304070715.p0.g93daed6.assembly.stream.el8.src.rpm
SHA-256: 9083e5b6362978f2a372288c6980e6b92a0ddc45d4eb87226b17740844430bec
ppc64le
atomic-openshift-service-idler-4.11.0-202304070715.p0.ga0f9090.assembly.stream.el8.ppc64le.rpm
SHA-256: 5ff6e02b2826b3c281bda37266e71aff91b12a662f5e874c8a02fcf40975256b
openshift-ansible-4.11.0-202304070715.p0.gdf73941.assembly.stream.el8.noarch.rpm
SHA-256: f44774dbf73e69db21f826f76369c493dd77617271856c9a8a54f446ef218232
openshift-ansible-test-4.11.0-202304070715.p0.gdf73941.assembly.stream.el8.noarch.rpm
SHA-256: 35f1b30823d7c173f6341d2aae7e6ccac1e6852e32ce4e08e9f87c69dfa63bd9
openshift-clients-4.11.0-202304070715.p0.gdea6f47.assembly.stream.el8.ppc64le.rpm
SHA-256: 1330742cd8e6a0579d3fd0ea427ecea3f0247449d920d8c71ae001e1abcad8e1
openshift-hyperkube-4.11.0-202304082115.p0.gceaf338.assembly.stream.el8.ppc64le.rpm
SHA-256: c42accb04da2b4473e62be1fc6ab3b99d88b0aa2475405f63545825995928ab5
openshift-kuryr-cni-4.11.0-202304070715.p0.g93daed6.assembly.stream.el8.noarch.rpm
SHA-256: 529d8b4afcfd47eb1b28e6cdeab0febdd8dd53137e77c1dc4d412fead2999a8c
openshift-kuryr-common-4.11.0-202304070715.p0.g93daed6.assembly.stream.el8.noarch.rpm
SHA-256: 7f4340b24b6013e69ba6fdc72af0c0308f96b218c7f55e9416542ccf89d8144e
openshift-kuryr-controller-4.11.0-202304070715.p0.g93daed6.assembly.stream.el8.noarch.rpm
SHA-256: f21fe5f437634241e41ace23cb372cd2d06f4e3c39bce890f1ba777d8fc73f19
python3-kuryr-kubernetes-4.11.0-202304070715.p0.g93daed6.assembly.stream.el8.noarch.rpm
SHA-256: 5d2971eff2cae441a720bc02e112096581f7d62ac07d4bc4c7cda44e36fe6f61
python3-werkzeug-2.0.3-5.el8.noarch.rpm
SHA-256: 4f32639b59b22c0c2a1d5a552e1be9c74871ff4d1ad1cc80c543ed111468e143
Red Hat OpenShift Container Platform for IBM Z and LinuxONE 4.11 for RHEL 8
SRPM
atomic-openshift-service-idler-4.11.0-202304070715.p0.ga0f9090.assembly.stream.el8.src.rpm
SHA-256: dd70d8a3a2576a4a11433844648309e791a76bf9a94a5ed4dd64ce710927474a
openshift-4.11.0-202304082115.p0.gceaf338.assembly.stream.el8.src.rpm
SHA-256: 738b9aa73deaab10843f435062ad45f2ee93b77f98910e54e778b13fe5f2888e
openshift-ansible-4.11.0-202304070715.p0.gdf73941.assembly.stream.el8.src.rpm
SHA-256: 43afa5e443ee67e896f2ee41a1408ecc8f65c86d1a5070c11db1295ef12965c1
openshift-clients-4.11.0-202304070715.p0.gdea6f47.assembly.stream.el8.src.rpm
SHA-256: 7d313109e9779bd4e241048c66969068190a43fa5abce89943ac6b2e2c9a0610
openshift-kuryr-4.11.0-202304070715.p0.g93daed6.assembly.stream.el8.src.rpm
SHA-256: 9083e5b6362978f2a372288c6980e6b92a0ddc45d4eb87226b17740844430bec
s390x
atomic-openshift-service-idler-4.11.0-202304070715.p0.ga0f9090.assembly.stream.el8.s390x.rpm
SHA-256: 42d53a8cd68bacdf4a83ff98bfaf6075a8170dcdf5e34e2a3edf3ab2aea9a1d9
openshift-ansible-4.11.0-202304070715.p0.gdf73941.assembly.stream.el8.noarch.rpm
SHA-256: f44774dbf73e69db21f826f76369c493dd77617271856c9a8a54f446ef218232
openshift-ansible-test-4.11.0-202304070715.p0.gdf73941.assembly.stream.el8.noarch.rpm
SHA-256: 35f1b30823d7c173f6341d2aae7e6ccac1e6852e32ce4e08e9f87c69dfa63bd9
openshift-clients-4.11.0-202304070715.p0.gdea6f47.assembly.stream.el8.s390x.rpm
SHA-256: e03dfbbbac20403541259946331e990ebb8581e31c7c550017e32546639ca058
openshift-hyperkube-4.11.0-202304082115.p0.gceaf338.assembly.stream.el8.s390x.rpm
SHA-256: 8e821ba2c3b8851f11bf02e6ebd40e457f5eb34bdd0b2c458bdcb2a20b659175
openshift-kuryr-cni-4.11.0-202304070715.p0.g93daed6.assembly.stream.el8.noarch.rpm
SHA-256: 529d8b4afcfd47eb1b28e6cdeab0febdd8dd53137e77c1dc4d412fead2999a8c
openshift-kuryr-common-4.11.0-202304070715.p0.g93daed6.assembly.stream.el8.noarch.rpm
SHA-256: 7f4340b24b6013e69ba6fdc72af0c0308f96b218c7f55e9416542ccf89d8144e
openshift-kuryr-controller-4.11.0-202304070715.p0.g93daed6.assembly.stream.el8.noarch.rpm
SHA-256: f21fe5f437634241e41ace23cb372cd2d06f4e3c39bce890f1ba777d8fc73f19
python3-kuryr-kubernetes-4.11.0-202304070715.p0.g93daed6.assembly.stream.el8.noarch.rpm
SHA-256: 5d2971eff2cae441a720bc02e112096581f7d62ac07d4bc4c7cda44e36fe6f61
python3-werkzeug-2.0.3-5.el8.noarch.rpm
SHA-256: 4f32639b59b22c0c2a1d5a552e1be9c74871ff4d1ad1cc80c543ed111468e143
Red Hat OpenShift Container Platform for ARM 64 4.11
SRPM
atomic-openshift-service-idler-4.11.0-202304070715.p0.ga0f9090.assembly.stream.el8.src.rpm
SHA-256: dd70d8a3a2576a4a11433844648309e791a76bf9a94a5ed4dd64ce710927474a
openshift-4.11.0-202304082115.p0.gceaf338.assembly.stream.el8.src.rpm
SHA-256: 738b9aa73deaab10843f435062ad45f2ee93b77f98910e54e778b13fe5f2888e
openshift-ansible-4.11.0-202304070715.p0.gdf73941.assembly.stream.el8.src.rpm
SHA-256: 43afa5e443ee67e896f2ee41a1408ecc8f65c86d1a5070c11db1295ef12965c1
openshift-clients-4.11.0-202304070715.p0.gdea6f47.assembly.stream.el8.src.rpm
SHA-256: 7d313109e9779bd4e241048c66969068190a43fa5abce89943ac6b2e2c9a0610
openshift-kuryr-4.11.0-202304070715.p0.g93daed6.assembly.stream.el8.src.rpm
SHA-256: 9083e5b6362978f2a372288c6980e6b92a0ddc45d4eb87226b17740844430bec
python-werkzeug-2.0.3-5.el8.src.rpm
SHA-256: bf95a83415c23617dea7251028121e815af40068ad9daef1766e78c05af7cd0b
aarch64
atomic-openshift-service-idler-4.11.0-202304070715.p0.ga0f9090.assembly.stream.el8.aarch64.rpm
SHA-256: d6ea45e1cae4fd76fbc2a6060068f0375cae6ddeda41d370d14467df0e38041a
openshift-ansible-4.11.0-202304070715.p0.gdf73941.assembly.stream.el8.noarch.rpm
SHA-256: f44774dbf73e69db21f826f76369c493dd77617271856c9a8a54f446ef218232
openshift-ansible-test-4.11.0-202304070715.p0.gdf73941.assembly.stream.el8.noarch.rpm
SHA-256: 35f1b30823d7c173f6341d2aae7e6ccac1e6852e32ce4e08e9f87c69dfa63bd9
openshift-clients-4.11.0-202304070715.p0.gdea6f47.assembly.stream.el8.aarch64.rpm
SHA-256: bce742228bebfbe95905ead436f08ef76fe0823707337e243e5635c7bde5b216
openshift-hyperkube-4.11.0-202304082115.p0.gceaf338.assembly.stream.el8.aarch64.rpm
SHA-256: f0e195c510157bf01001c09500b7552b315fbeea5c53ec10170e7dd22fa8a01c
openshift-kuryr-cni-4.11.0-202304070715.p0.g93daed6.assembly.stream.el8.noarch.rpm
SHA-256: 529d8b4afcfd47eb1b28e6cdeab0febdd8dd53137e77c1dc4d412fead2999a8c
openshift-kuryr-common-4.11.0-202304070715.p0.g93daed6.assembly.stream.el8.noarch.rpm
SHA-256: 7f4340b24b6013e69ba6fdc72af0c0308f96b218c7f55e9416542ccf89d8144e
openshift-kuryr-controller-4.11.0-202304070715.p0.g93daed6.assembly.stream.el8.noarch.rpm
SHA-256: f21fe5f437634241e41ace23cb372cd2d06f4e3c39bce890f1ba777d8fc73f19
python3-kuryr-kubernetes-4.11.0-202304070715.p0.g93daed6.assembly.stream.el8.noarch.rpm
SHA-256: 5d2971eff2cae441a720bc02e112096581f7d62ac07d4bc4c7cda44e36fe6f61
python3-werkzeug-2.0.3-5.el8.noarch.rpm
SHA-256: 4f32639b59b22c0c2a1d5a552e1be9c74871ff4d1ad1cc80c543ed111468e143
The Red Hat security contact is [email protected]. More contact details at https://access.redhat.com/security/team/contact/.