Uploaded image for project: 'Hybrid Cloud Console'
  1. Hybrid Cloud Console
  2. RHCLOUD-39675

Instant errata notification setting has no effect

XMLWordPrintable

    • Quality / Stability / Reliability
    • False
    • Hide

      None

      Show
      None
    • False
    • None
    • Unset
    • None

      While all settings on console.redhat.com made correct 

      Settings - Notifications - Notification Preferences - Security 

      shows 

      Subscriptions Security Updates

      checked on  Instant Notifications

       

      the Notifications receive with a bundle of Erratas in it:

       

      Von: Red Hat Hybrid Cloud Console <noreply@redhat.com>
      Gesendet: Mittwoch, 23. April 2025 02:06
      An: Red Hat Hybrid Cloud Console <noreply@redhat.com>
      Betreff: [EXTERN] Instant notification - Security updates - Errata - Subscription Services

       <https://console.redhat.com>   

      Errata - Subscription Services

      Security updates
      There are 3 security updates affecting your subscriptions.             
      Security update  Severity        Synopsis       
      RHSA-2025:3608 <https://access.redhat.com/errata/RHSA-2025:3608>         Moderate        Red Hat JBoss Web Server 6.1.0 release and security update     
      RHSA-2025:3609 <https://access.redhat.com/errata/RHSA-2025:3609>         Moderate        Red Hat JBoss Web Server 6.1.0 release and security update     
      RHSA-2025:4018 <https://access.redhat.com/errata/RHSA-2025:4018>         Important       OpenShift Container Platform 4.18.10 security and extras update         

      instead of 

      instant notification as soon a RHSA is released:

      Von: Red Hat Errata Notifications <errata@redhat.com>
      Gesendet: Mittwoch, 30. Oktober 2024 02:14
      An: <customer.mail@domain.com>
      Betreff: [EXTERN] [Security Advisory] RHSA-2024:8616 Moderate: kernel security update

      The following Red Hat Security Advisory has been published which may affect
      subscriptions which you have purchased.

      RHSA-2024:8616 Moderate: kernel security update

      Summary:

      An update for kernel is now available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.6 Telecommunications Update Service.

      Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

      The kernel packages contain the Linux kernel, the core of any Linux operating system.

      Security Fix(es):

      • kernel: ext4: fix uninitialized ratelimit_state-lock access in __ext4_fill_super() (CVE-2024-40998)
      • kernel: xprtrdma: fix pointer derefs in error cases of rpcrdma_ep_create (CVE-2022-48773)

      For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

      Full details and references:

      https://access.redhat.com/errata/RHSA-2024:8616?sc_cid=701600000006NHXAA2

      CVE Names:

      CVE-2022-48773 CVE-2024-40998

      Revision History:

      Issue Date: 2024-10-30
      Updated:    2024-10-30

      With that the customers need manually to check on the RHSAs to see if those must be installed immediately or i.e. in the regular maintenance window

      This behavior has changed since October '24 and customer expects the usual format of the mails.

              Unassigned Unassigned
              rhn-support-mfalz Melanie Falz
              Votes:
              0 Vote for this issue
              Watchers:
              6 Start watching this issue

                Created:
                Updated:
                Resolved: