RHSA-2023:0630: Important: Red Hat Advanced Cluster Management 2.7.0 security and bug fix updates

Published Feb 7, 2023
·
Updated

Red Hat Advanced Cluster Management for Kubernetes 2.7.0 imagesRed Hat Advanced Cluster Management for Kubernetes provides thecapabilities to address common challenges that administrators and sitereliability engineers face as they work across a range of public andprivate cloud environments. Clusters and applications are all visible andmanaged from a single console—with security policy built in.This advisory contains the container images for Red Hat Advanced ClusterManagement for Kubernetes, which fix several bugs. See the followingRelease Notes documentation, which will be updated shortly for thisrelease, for additional details about this release:https://access.redhat.com/documentation/en-us/red_hat_advanced_cluster_management_for_kubernetes/2.7/html/release_notes/ Security updates: CVE-2022-41912 crewjam/saml: Authentication bypass when processing SAML responses containing multiple Assertion elements CVE-2023-22467 luxon: Inefficient regular expression complexity in luxon.js CVE-2022-3517 nodejs-minimatch: ReDoS via the braceExpand function CVE-2022-30629 golang: crypto/tls: session tickets lack random ticket_age_add Bug addressed: ACM 2.7 images (BZ# 2116459)

Affected Software

1 affected component
Red Hat Advanced Cluster Management for Kubernetes

Remediation

Event History

Feb 7, 2023
Advisory Published
12:00 AM
Data Sourced
12:00 AM
RemedyDescriptionAffected Software
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Frequently Asked Questions

1

What is the severity of RHSA-2023:0630?

The severity of RHSA-2023:0630 is classified based on the impact and exploitability of the vulnerabilities addressed in the advisory.

2

How do I fix RHSA-2023:0630?

To fix RHSA-2023:0630, ensure you update to the patched version of the Red Hat Advanced Cluster Management for Kubernetes as recommended in the advisory.

3

What versions of Red Hat Advanced Cluster Management for Kubernetes are affected by RHSA-2023:0630?

RHSA-2023:0630 affects Red Hat Advanced Cluster Management for Kubernetes version 2.7.0.

4

Is RHSA-2023:0630 relevant for my Kubernetes deployment?

If you are using Red Hat Advanced Cluster Management for Kubernetes version 2.7.0, then RHSA-2023:0630 is relevant to your deployment.

5

What types of vulnerabilities are addressed in RHSA-2023:0630?

RHSA-2023:0630 addresses vulnerabilities that can pose security risks and impact system reliability within the Kubernetes environment.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203