This is a tracker for fixes in CRW 2.15.4 (https://errata.devel.redhat.com/advisory/94671), which include:

• disabling a failing test in the stacks-php container so that automated CVE fixes will flow better in future
• CVE fixes
  • https://errata.devel.redhat.com/advisory/94362 23 builds, including zlib fix https://bugzilla.redhat.com/show_bug.cgi?id=2067945 + those listed below
    • https://errata.engineering.redhat.com/advisory/92171 (httpd)
    • https://errata.engineering.redhat.com/advisory/92286 (openssl)
    • https://errata.engineering.redhat.com/advisory/93344 (java-11-openjdk)
    • https://errata.engineering.redhat.com/advisory/93779 (gzip)
    • https://errata.engineering.redhat.com/advisory/93296 (zlib)

Dropped errata that attempted to release the above fixes, pasted here for reference / ease of access:

• https://errata.devel.redhat.com/advisory/94289 dropped by botas: 8 builds
• https://errata.devel.redhat.com/advisory/94225 dropped by botas: 2 builds - errata for the 2 missing repins
• https://errata.devel.redhat.com/advisory/94201 dropped by botas: 19 builds - roll up the issues below, but missing 2 respins
• https://errata.devel.redhat.com/advisory/94066 dropped by botas: 5 builds - gzip
• https://errata.devel.redhat.com/advisory/93700 dropped by botas: 2 builds - java-11-openjdk
• https://errata.devel.redhat.com/advisory/92560 dropped by botas: 20 builds - openssl
• https://errata.devel.redhat.com/advisory/92305 dropped by botas: 4 builds - httpd