- Issued:
- 2019-02-06
- Updated:
- 2019-02-06
RHEA-2019:0282 - Product Enhancement Advisory
Synopsis
Updates to Red Hat OpenJDK (S2I) Images for OpenShift
Type/Severity
Product Enhancement Advisory
Topic
Updates are now available for Red Hat OpenJDK 1.8 (S2I) image running in OpenShift Container Platform 3.10 and 3.11.
This is also the first release of Red Hat OpenJDK 11 (S2I) image running in OpenShift Container Platform 3.10 and 3.11.
Description
Red Hat JBoss Middleware for OpenShift provides images for many of the Red Hat Middleware products, for use with OpenShift Container Platform, with on-premise or private cloud deployments.
This errata updates the Red Hat OpenJDK 1.8 Source To Image (S2I) image with numerous bug fixes and enhancements and introduces Red Hat OpenJDK 11 Source To Image (S2I).
These images can be used with OpenShift Container Platform 3.10 and 3.11.
Solution
To update to the latest Red Hat JBoss Middleware for OpenShift Java S2I image run the following steps to pull in the content:
1. On your master host(s), ensure you are logged into the CLI as a cluster administrator or user that has project administrator access to the global "openshift" project. For example:
$ oc login -u system:admin
2. Run the following command to update the OpenShift Java S2I image stream in the "openshift" project:
$ oc replace --force -n openshift -f \
https://raw.githubusercontent.com/jboss-container-images/openjdk/ose-v1.4.17/templates/image-streams.json
Note, this update of the image streams will pull images from registry.redhat.io, which requires authentication. Please refer to the following KB for details on how to configure your environment to use the new registry: https://access.redhat.com/RegistryAuthentication
3. Run the following command to import the template
$ oc replace --force -n openshift -f \
https://raw.githubusercontent.com/jboss-container-images/openjdk/ose-v1.4.17/templates/openjdk-web-basic-s2i.json
Affected Products
- Red Hat OpenShift Container Platform 3.11 x86_64
- Red Hat OpenShift Container Platform 3.10 x86_64
- Red Hat OpenShift Container Platform for Power 3.11 ppc64le
- Red Hat OpenShift Container Platform for Power 3.10 ppc64le
Fixes
(none)CVEs
- CVE-2015-9262
- CVE-2017-3735
- CVE-2017-16997
- CVE-2017-18267
- CVE-2018-0495
- CVE-2018-0732
- CVE-2018-0737
- CVE-2018-0739
- CVE-2018-1060
- CVE-2018-1061
- CVE-2018-1113
- CVE-2018-5729
- CVE-2018-5730
- CVE-2018-6485
- CVE-2018-7208
- CVE-2018-7568
- CVE-2018-7569
- CVE-2018-7642
- CVE-2018-7643
- CVE-2018-8945
- CVE-2018-10372
- CVE-2018-10373
- CVE-2018-10534
- CVE-2018-10535
- CVE-2018-10733
- CVE-2018-10767
- CVE-2018-10768
- CVE-2018-11236
- CVE-2018-11237
- CVE-2018-12384
- CVE-2018-12910
- CVE-2018-13033
- CVE-2018-13988
- CVE-2018-15688
- CVE-2018-16864
- CVE-2018-16865
- CVE-2018-1000007
- CVE-2018-1000120
- CVE-2018-1000121
- CVE-2018-1000122
- CVE-2018-1000301
References
(none)
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.