Vulnerability-Lookup

CVE-2020-2161 (GCVE-0-2020-2161)

Vulnerability from cvelistv5 – Published: 2020-03-25 16:05 – Updated: 2024-08-04 07:01

Summary

Jenkins 2.227 and earlier, LTS 2.204.5 and earlier does not properly escape node labels that are shown in the form validation for label expressions on job configuration pages, resulting in a stored XSS vulnerability exploitable by users able to define node labels.

Severity

No CVSS data available.

Assigner

jenkins

References

2 references

URL	Tags
https://jenkins.io/security/advisory/2020-03-25/#…	x_refsource_CONFIRM
http://www.openwall.com/lists/oss-security/2020/03/25/2	mailing-listx_refsource_MLIST

Impacted products

1 product

Vendor	Product	Version
Jenkins project	Jenkins	Affected: unspecified , ≤ 2.227 (custom) Affected: unspecified , ≤ LTS 2.204.5 (custom)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T07:01:40.978Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1781"
          },
          {
            "name": "[oss-security] 20200325 Multiple vulnerabilities in Jenkins and Jenkins plugins",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2020/03/25/2"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Jenkins",
          "vendor": "Jenkins project",
          "versions": [
            {
              "lessThanOrEqual": "2.227",
              "status": "affected",
              "version": "unspecified",
              "versionType": "custom"
            },
            {
              "lessThanOrEqual": "LTS 2.204.5",
              "status": "affected",
              "version": "unspecified",
              "versionType": "custom"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Jenkins 2.227 and earlier, LTS 2.204.5 and earlier does not properly escape node labels that are shown in the form validation for label expressions on job configuration pages, resulting in a stored XSS vulnerability exploitable by users able to define node labels."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2023-10-24T16:06:06.374Z",
        "orgId": "39769cd5-e6e2-4dc8-927e-97b3aa056f5b",
        "shortName": "jenkins"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1781"
        },
        {
          "name": "[oss-security] 20200325 Multiple vulnerabilities in Jenkins and Jenkins plugins",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://www.openwall.com/lists/oss-security/2020/03/25/2"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "jenkinsci-cert@googlegroups.com",
          "ID": "CVE-2020-2161",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Jenkins",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "\u003c=",
                            "version_value": "2.227"
                          },
                          {
                            "version_affected": "\u003c=",
                            "version_value": "LTS 2.204.5"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Jenkins project"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Jenkins 2.227 and earlier, LTS 2.204.5 and earlier does not properly escape node labels that are shown in the form validation for label expressions on job configuration pages, resulting in a stored XSS vulnerability exploitable by users able to define node labels."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-79: Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1781",
              "refsource": "CONFIRM",
              "url": "https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1781"
            },
            {
              "name": "[oss-security] 20200325 Multiple vulnerabilities in Jenkins and Jenkins plugins",
              "refsource": "MLIST",
              "url": "http://www.openwall.com/lists/oss-security/2020/03/25/2"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "39769cd5-e6e2-4dc8-927e-97b3aa056f5b",
    "assignerShortName": "jenkins",
    "cveId": "CVE-2020-2161",
    "datePublished": "2020-03-25T16:05:34.000Z",
    "dateReserved": "2019-12-05T00:00:00.000Z",
    "dateUpdated": "2024-08-04T07:01:40.978Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2020-2161",
      "date": "2026-05-31",
      "epss": "0.0017",
      "percentile": "0.37962"
    },
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:jenkins:jenkins:*:*:*:*:lts:*:*:*\", \"versionEndIncluding\": \"2.204.5\", \"matchCriteriaId\": \"CFE13DC6-8F0E-458C-AD96-32E8F057CA18\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:jenkins:jenkins:*:*:*:*:-:*:*:*\", \"versionEndIncluding\": \"2.227\", \"matchCriteriaId\": \"861CC050-ED58-468C-BC49-76C840E22E3D\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Jenkins 2.227 and earlier, LTS 2.204.5 and earlier does not properly escape node labels that are shown in the form validation for label expressions on job configuration pages, resulting in a stored XSS vulnerability exploitable by users able to define node labels.\"}, {\"lang\": \"es\", \"value\": \"Jenkins versiones 2.227 y anteriores, LTS versiones 2.204.5 y versiones anteriores, no se escapan apropiadamente las etiquetas de nodo que son mostradas en la comprobaci\\u00f3n del formulario para las expresiones de etiqueta en las p\\u00e1ginas de configuraci\\u00f3n del trabajo, resultando en una vulnerabilidad de tipo XSS almacenado explotable por usuarios capaces de definir etiquetas de nodo.\"}]",
      "id": "CVE-2020-2161",
      "lastModified": "2024-11-21T05:24:49.760",
      "metrics": "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N\", \"baseScore\": 5.4, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"REQUIRED\", \"scope\": \"CHANGED\", \"confidentialityImpact\": \"LOW\", \"integrityImpact\": \"LOW\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 2.3, \"impactScore\": 2.7}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:M/Au:S/C:N/I:P/A:N\", \"baseScore\": 3.5, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"SINGLE\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"PARTIAL\", \"availabilityImpact\": \"NONE\"}, \"baseSeverity\": \"LOW\", \"exploitabilityScore\": 6.8, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": true}]}",
      "published": "2020-03-25T17:15:15.000",
      "references": "[{\"url\": \"http://www.openwall.com/lists/oss-security/2020/03/25/2\", \"source\": \"jenkinsci-cert@googlegroups.com\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1781\", \"source\": \"jenkinsci-cert@googlegroups.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2020/03/25/2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1781\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}]",
      "sourceIdentifier": "jenkinsci-cert@googlegroups.com",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-79\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2020-2161\",\"sourceIdentifier\":\"jenkinsci-cert@googlegroups.com\",\"published\":\"2020-03-25T17:15:15.000\",\"lastModified\":\"2024-11-21T05:24:49.760\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Jenkins 2.227 and earlier, LTS 2.204.5 and earlier does not properly escape node labels that are shown in the form validation for label expressions on job configuration pages, resulting in a stored XSS vulnerability exploitable by users able to define node labels.\"},{\"lang\":\"es\",\"value\":\"Jenkins versiones 2.227 y anteriores, LTS versiones 2.204.5 y versiones anteriores, no se escapan apropiadamente las etiquetas de nodo que son mostradas en la comprobaci\u00f3n del formulario para las expresiones de etiqueta en las p\u00e1ginas de configuraci\u00f3n del trabajo, resultando en una vulnerabilidad de tipo XSS almacenado explotable por usuarios capaces de definir etiquetas de nodo.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N\",\"baseScore\":5.4,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"REQUIRED\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"LOW\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.3,\"impactScore\":2.7}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:S/C:N/I:P/A:N\",\"baseScore\":3.5,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"SINGLE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"LOW\",\"exploitabilityScore\":6.8,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-79\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jenkins:jenkins:*:*:*:*:lts:*:*:*\",\"versionEndIncluding\":\"2.204.5\",\"matchCriteriaId\":\"CFE13DC6-8F0E-458C-AD96-32E8F057CA18\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jenkins:jenkins:*:*:*:*:-:*:*:*\",\"versionEndIncluding\":\"2.227\",\"matchCriteriaId\":\"861CC050-ED58-468C-BC49-76C840E22E3D\"}]}]}],\"references\":[{\"url\":\"http://www.openwall.com/lists/oss-security/2020/03/25/2\",\"source\":\"jenkinsci-cert@googlegroups.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1781\",\"source\":\"jenkinsci-cert@googlegroups.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2020/03/25/2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1781\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]}]}}"
  }
}

BDU:2020-05641

Vulnerability from fstec - Published: 25.03.2020

Title

Уязвимость сервера автоматизации Jenkins, связанная с непринятием мер по защите структуры веб-страницы, позволяющая нарушителю осуществлять межсайтовые сценарные атаки

Description

Уязвимость сервера автоматизации Jenkins существует из-за непринятия мер по защите структуры веб-страницы. Эксплуатация уязвимости может позволить нарушителю, действующему удалённо, осуществлять межсайтовые сценарные атаки

Severity


                    
                      AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Vendor

CD Foundation

Software Name

Jenkins

Software Version

до 2.204.5 LTS включительно (Jenkins), до 2.227 включительно (Jenkins)

Possible Mitigations

Использование рекомендаций: https://www.jenkins.io/security/advisory/2020-03-25/#SECURITY-1781

Reference

https://www.jenkins.io/security/advisory/2020-03-25/#SECURITY-1781

CWE

CWE-79

JSON

To clipboard

{
  "CVSS 2.0": "AV:N/AC:L/Au:S/C:P/I:P/A:N",
  "CVSS 3.0": "AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
  "CVSS 4.0": null,
  "remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
  "remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
  "\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "CD Foundation",
  "\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "\u0434\u043e 2.204.5 LTS \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e (Jenkins), \u0434\u043e 2.227 \u0432\u043a\u043b\u044e\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e (Jenkins)",
  "\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439:\nhttps://www.jenkins.io/security/advisory/2020-03-25/#SECURITY-1781",
  "\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "25.03.2020",
  "\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "15.12.2020",
  "\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "15.12.2020",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2020-05641",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2020-2161",
  "\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
  "\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
  "\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "Jenkins",
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": null,
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0441\u0435\u0440\u0432\u0435\u0440\u0430 \u0430\u0432\u0442\u043e\u043c\u0430\u0442\u0438\u0437\u0430\u0446\u0438\u0438 Jenkins, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u0430\u044f \u0441 \u043d\u0435\u043f\u0440\u0438\u043d\u044f\u0442\u0438\u0435\u043c \u043c\u0435\u0440 \u043f\u043e \u0437\u0430\u0449\u0438\u0442\u0435 \u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u044b \u0432\u0435\u0431-\u0441\u0442\u0440\u0430\u043d\u0438\u0446\u044b, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u043e\u0441\u0443\u0449\u0435\u0441\u0442\u0432\u043b\u044f\u0442\u044c \u043c\u0435\u0436\u0441\u0430\u0439\u0442\u043e\u0432\u044b\u0435 \u0441\u0446\u0435\u043d\u0430\u0440\u043d\u044b\u0435 \u0430\u0442\u0430\u043a\u0438",
  "\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u041d\u0435\u043f\u0440\u0438\u043d\u044f\u0442\u0438\u0435 \u043c\u0435\u0440 \u043f\u043e \u0437\u0430\u0449\u0438\u0442\u0435 \u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u044b \u0432\u0435\u0431-\u0441\u0442\u0440\u0430\u043d\u0438\u0446\u044b (\u0438\u043b\u0438 \\\u00ab\u041c\u0435\u0436\u0441\u0430\u0439\u0442\u043e\u0432\u0430\u044f \u0441\u0446\u0435\u043d\u0430\u0440\u043d\u0430\u044f \u0430\u0442\u0430\u043a\u0430\\\u00bb) (CWE-79)",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0441\u0435\u0440\u0432\u0435\u0440\u0430 \u0430\u0432\u0442\u043e\u043c\u0430\u0442\u0438\u0437\u0430\u0446\u0438\u0438 Jenkins \u0441\u0443\u0449\u0435\u0441\u0442\u0432\u0443\u0435\u0442 \u0438\u0437-\u0437\u0430 \u043d\u0435\u043f\u0440\u0438\u043d\u044f\u0442\u0438\u044f \u043c\u0435\u0440 \u043f\u043e \u0437\u0430\u0449\u0438\u0442\u0435 \u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u044b \u0432\u0435\u0431-\u0441\u0442\u0440\u0430\u043d\u0438\u0446\u044b. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e, \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u043c\u0443 \u0443\u0434\u0430\u043b\u0451\u043d\u043d\u043e, \u043e\u0441\u0443\u0449\u0435\u0441\u0442\u0432\u043b\u044f\u0442\u044c \u043c\u0435\u0436\u0441\u0430\u0439\u0442\u043e\u0432\u044b\u0435 \u0441\u0446\u0435\u043d\u0430\u0440\u043d\u044b\u0435 \u0430\u0442\u0430\u043a\u0438",
  "\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
  "\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": null,
  "\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u0418\u043d\u044a\u0435\u043a\u0446\u0438\u044f",
  "\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://www.jenkins.io/security/advisory/2020-03-25/#SECURITY-1781",
  "\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
  "\u0422\u0438\u043f \u041f\u041e": "\u041f\u0440\u0438\u043a\u043b\u0430\u0434\u043d\u043e\u0435 \u041f\u041e \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u043e\u043d\u043d\u044b\u0445 \u0441\u0438\u0441\u0442\u0435\u043c",
  "\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-79",
  "\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 5,5)\n\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 5,2)"
}

bit-jenkins-2020-2161

Vulnerability from bitnami_vulndb

Published

2024-03-06 11:05

Modified

2025-04-03 14:40

Summary

Details

JSON

To clipboard

{
  "affected": [
    {
      "package": {
        "ecosystem": "Bitnami",
        "name": "jenkins",
        "purl": "pkg:bitnami/jenkins"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "2.227.1"
            }
          ],
          "type": "SEMVER"
        }
      ],
      "severity": [
        {
          "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
          "type": "CVSS_V3"
        }
      ]
    }
  ],
  "aliases": [
    "CVE-2020-2161"
  ],
  "database_specific": {
    "cpes": [
      "cpe:2.3:a:jenkins:jenkins:*:*:*:*:lts:*:*:*",
      "cpe:2.3:a:jenkins:jenkins:*:*:*:*:-:*:*:*"
    ],
    "severity": "Medium"
  },
  "details": "Jenkins 2.227 and earlier, LTS 2.204.5 and earlier does not properly escape node labels that are shown in the form validation for label expressions on job configuration pages, resulting in a stored XSS vulnerability exploitable by users able to define node labels.",
  "id": "BIT-jenkins-2020-2161",
  "modified": "2025-04-03T14:40:37.652Z",
  "published": "2024-03-06T11:05:51.785Z",
  "references": [
    {
      "type": "WEB",
      "url": "http://www.openwall.com/lists/oss-security/2020/03/25/2"
    },
    {
      "type": "WEB",
      "url": "https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1781"
    },
    {
      "type": "WEB",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2161"
    }
  ],
  "schema_version": "1.5.0"
}

CNVD-2020-20706

Vulnerability from cnvd - Published: 2020-04-01

Title

CloudBees Jenkins和LTS跨站脚本漏洞（CNVD-2020-20706）

Description

CloudBees Jenkins（Hudson Labs）是美国CloudBees公司的一套基于Java开发的持续集成工具。该产品主要用于监控持续的软件版本发布/测试项目和一些定时执行的任务。LTS是CloudBeesJenkins的一个长期支持版本。 CloudBees Jenkins 2.227及之前版本和LTS 2.204.5及之前版本中存在跨站脚本漏洞。该漏洞源于WEB应用缺少对客户端数据的正确验证。攻击者可利用该漏洞执行客户端代码。

Severity

低

Patch Name

CloudBees Jenkins和LTS跨站脚本漏洞（CNVD-2020-20706）的补丁

Patch Description

Formal description

目前厂商已发布升级补丁以修复漏洞，补丁获取链接： https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1732

Reference

https://nvd.nist.gov/vuln/detail/CVE-2020-2161

Impacted products

Name
['CloudBees Jenkins <=2.227', 'CloudBees Jenkins LTS <=2.204.5']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2020-2161"
    }
  },
  "description": "CloudBees Jenkins\uff08Hudson Labs\uff09\u662f\u7f8e\u56fdCloudBees\u516c\u53f8\u7684\u4e00\u5957\u57fa\u4e8eJava\u5f00\u53d1\u7684\u6301\u7eed\u96c6\u6210\u5de5\u5177\u3002\u8be5\u4ea7\u54c1\u4e3b\u8981\u7528\u4e8e\u76d1\u63a7\u6301\u7eed\u7684\u8f6f\u4ef6\u7248\u672c\u53d1\u5e03/\u6d4b\u8bd5\u9879\u76ee\u548c\u4e00\u4e9b\u5b9a\u65f6\u6267\u884c\u7684\u4efb\u52a1\u3002LTS\u662fCloudBeesJenkins\u7684\u4e00\u4e2a\u957f\u671f\u652f\u6301\u7248\u672c\u3002\n\nCloudBees Jenkins 2.227\u53ca\u4e4b\u524d\u7248\u672c\u548cLTS 2.204.5\u53ca\u4e4b\u524d\u7248\u672c\u4e2d\u5b58\u5728\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\u3002\u8be5\u6f0f\u6d1e\u6e90\u4e8eWEB\u5e94\u7528\u7f3a\u5c11\u5bf9\u5ba2\u6237\u7aef\u6570\u636e\u7684\u6b63\u786e\u9a8c\u8bc1\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u6267\u884c\u5ba2\u6237\u7aef\u4ee3\u7801\u3002",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://jenkins.io/security/advisory/2020-03-25/#SECURITY-1732",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2020-20706",
  "openTime": "2020-04-01",
  "patchDescription": "CloudBees Jenkins\uff08Hudson Labs\uff09\u662f\u7f8e\u56fdCloudBees\u516c\u53f8\u7684\u4e00\u5957\u57fa\u4e8eJava\u5f00\u53d1\u7684\u6301\u7eed\u96c6\u6210\u5de5\u5177\u3002\u8be5\u4ea7\u54c1\u4e3b\u8981\u7528\u4e8e\u76d1\u63a7\u6301\u7eed\u7684\u8f6f\u4ef6\u7248\u672c\u53d1\u5e03/\u6d4b\u8bd5\u9879\u76ee\u548c\u4e00\u4e9b\u5b9a\u65f6\u6267\u884c\u7684\u4efb\u52a1\u3002LTS\u662fCloudBeesJenkins\u7684\u4e00\u4e2a\u957f\u671f\u652f\u6301\u7248\u672c\u3002\r\n\r\nCloudBees Jenkins 2.227\u53ca\u4e4b\u524d\u7248\u672c\u548cLTS 2.204.5\u53ca\u4e4b\u524d\u7248\u672c\u4e2d\u5b58\u5728\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\u3002\u8be5\u6f0f\u6d1e\u6e90\u4e8eWEB\u5e94\u7528\u7f3a\u5c11\u5bf9\u5ba2\u6237\u7aef\u6570\u636e\u7684\u6b63\u786e\u9a8c\u8bc1\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u6267\u884c\u5ba2\u6237\u7aef\u4ee3\u7801\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "CloudBees Jenkins\u548cLTS\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\uff08CNVD-2020-20706\uff09\u7684\u8865\u4e01",
  "products": {
    "product": [
      "CloudBees Jenkins \u003c=2.227",
      "CloudBees Jenkins LTS \u003c=2.204.5"
    ]
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2020-2161",
  "serverity": "\u4f4e",
  "submitTime": "2020-03-26",
  "title": "CloudBees Jenkins\u548cLTS\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\uff08CNVD-2020-20706\uff09"
}

FKIE_CVE-2020-2161

Vulnerability from fkie_nvd - Published: 2020-03-25 17:15 - Updated: 2024-11-21 05:24

Severity

5.4 (Medium) - CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Summary

References

URL	Tags
jenkinsci-cert@googlegroups.com	http://www.openwall.com/lists/oss-security/2020/03/25/2	Mailing List, Third Party Advisory
jenkinsci-cert@googlegroups.com	https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1781	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.openwall.com/lists/oss-security/2020/03/25/2	Mailing List, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1781	Vendor Advisory

Impacted products

	Vendor	Product	Version
	jenkins	jenkins	*
	jenkins	jenkins	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:jenkins:jenkins:*:*:*:*:lts:*:*:*",
              "matchCriteriaId": "CFE13DC6-8F0E-458C-AD96-32E8F057CA18",
              "versionEndIncluding": "2.204.5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:jenkins:jenkins:*:*:*:*:-:*:*:*",
              "matchCriteriaId": "861CC050-ED58-468C-BC49-76C840E22E3D",
              "versionEndIncluding": "2.227",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Jenkins 2.227 and earlier, LTS 2.204.5 and earlier does not properly escape node labels that are shown in the form validation for label expressions on job configuration pages, resulting in a stored XSS vulnerability exploitable by users able to define node labels."
    },
    {
      "lang": "es",
      "value": "Jenkins versiones 2.227 y anteriores, LTS versiones 2.204.5 y versiones anteriores, no se escapan apropiadamente las etiquetas de nodo que son mostradas en la comprobaci\u00f3n del formulario para las expresiones de etiqueta en las p\u00e1ginas de configuraci\u00f3n del trabajo, resultando en una vulnerabilidad de tipo XSS almacenado explotable por usuarios capaces de definir etiquetas de nodo."
    }
  ],
  "id": "CVE-2020-2161",
  "lastModified": "2024-11-21T05:24:49.760",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "LOW",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "SINGLE",
          "availabilityImpact": "NONE",
          "baseScore": 3.5,
          "confidentialityImpact": "NONE",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:M/Au:S/C:N/I:P/A:N",
          "version": "2.0"
        },
        "exploitabilityScore": 6.8,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": true
      }
    ],
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "NONE",
          "baseScore": 5.4,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "LOW",
          "integrityImpact": "LOW",
          "privilegesRequired": "LOW",
          "scope": "CHANGED",
          "userInteraction": "REQUIRED",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
          "version": "3.1"
        },
        "exploitabilityScore": 2.3,
        "impactScore": 2.7,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2020-03-25T17:15:15.000",
  "references": [
    {
      "source": "jenkinsci-cert@googlegroups.com",
      "tags": [
        "Mailing List",
        "Third Party Advisory"
      ],
      "url": "http://www.openwall.com/lists/oss-security/2020/03/25/2"
    },
    {
      "source": "jenkinsci-cert@googlegroups.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1781"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Mailing List",
        "Third Party Advisory"
      ],
      "url": "http://www.openwall.com/lists/oss-security/2020/03/25/2"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1781"
    }
  ],
  "sourceIdentifier": "jenkinsci-cert@googlegroups.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-79"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GSD-2020-2161

Vulnerability from gsd - Updated: 2023-12-13 01:21

Details

Aliases

CVE-2020-2161

Aliases

CVE-2020-2161

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2020-2161",
    "description": "Jenkins 2.227 and earlier, LTS 2.204.5 and earlier does not properly escape node labels that are shown in the form validation for label expressions on job configuration pages, resulting in a stored XSS vulnerability exploitable by users able to define node labels.",
    "id": "GSD-2020-2161",
    "references": [
      "https://access.redhat.com/errata/RHBA-2020:2477",
      "https://access.redhat.com/errata/RHBA-2020:2444",
      "https://access.redhat.com/errata/RHBA-2020:2435"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2020-2161"
      ],
      "details": "Jenkins 2.227 and earlier, LTS 2.204.5 and earlier does not properly escape node labels that are shown in the form validation for label expressions on job configuration pages, resulting in a stored XSS vulnerability exploitable by users able to define node labels.",
      "id": "GSD-2020-2161",
      "modified": "2023-12-13T01:21:51.188957Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "jenkinsci-cert@googlegroups.com",
        "ID": "CVE-2020-2161",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "Jenkins",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "\u003c=",
                          "version_name": "unspecified",
                          "version_value": "2.227"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "Jenkins project"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Jenkins 2.227 and earlier, LTS 2.204.5 and earlier does not properly escape node labels that are shown in the form validation for label expressions on job configuration pages, resulting in a stored XSS vulnerability exploitable by users able to define node labels."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1781",
            "refsource": "MISC",
            "url": "https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1781"
          },
          {
            "name": "http://www.openwall.com/lists/oss-security/2020/03/25/2",
            "refsource": "MISC",
            "url": "http://www.openwall.com/lists/oss-security/2020/03/25/2"
          }
        ]
      }
    },
    "gitlab.com": {
      "advisories": [
        {
          "affected_range": "[0,2.227]",
          "affected_versions": "All versions up to 2.227",
          "cvss_v2": "AV:N/AC:M/Au:S/C:N/I:P/A:N",
          "cvss_v3": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
          "cwe_ids": [
            "CWE-1035",
            "CWE-79",
            "CWE-937"
          ],
          "date": "2020-03-30",
          "description": "Jenkins does not properly escape node labels that are shown in the form validation for label expressions on job configuration pages, resulting in a stored XSS vulnerability exploitable by users able to define node labels.",
          "fixed_versions": [
            "2.228"
          ],
          "identifier": "CVE-2020-2161",
          "identifiers": [
            "CVE-2020-2161"
          ],
          "not_impacted": "All versions after 2.227",
          "package_slug": "maven/org.jenkins-ci.main/jenkins-core",
          "pubdate": "2020-03-25",
          "solution": "Upgrade to version 2.228 or above.",
          "title": "Cross-site Scripting",
          "urls": [
            "https://nvd.nist.gov/vuln/detail/CVE-2020-2161",
            "https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1781"
          ],
          "uuid": "d3183c7b-0bee-4782-ad55-354b7ba73d1e"
        }
      ]
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:jenkins:jenkins:*:*:*:*:lts:*:*:*",
                "cpe_name": [],
                "versionEndIncluding": "2.204.5",
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:jenkins:jenkins:*:*:*:*:-:*:*:*",
                "cpe_name": [],
                "versionEndIncluding": "2.227",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "jenkinsci-cert@googlegroups.com",
          "ID": "CVE-2020-2161"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Jenkins 2.227 and earlier, LTS 2.204.5 and earlier does not properly escape node labels that are shown in the form validation for label expressions on job configuration pages, resulting in a stored XSS vulnerability exploitable by users able to define node labels."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-79"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1781",
              "refsource": "CONFIRM",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1781"
            },
            {
              "name": "[oss-security] 20200325 Multiple vulnerabilities in Jenkins and Jenkins plugins",
              "refsource": "MLIST",
              "tags": [
                "Mailing List",
                "Third Party Advisory"
              ],
              "url": "http://www.openwall.com/lists/oss-security/2020/03/25/2"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "acInsufInfo": false,
          "cvssV2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "SINGLE",
            "availabilityImpact": "NONE",
            "baseScore": 3.5,
            "confidentialityImpact": "NONE",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:S/C:N/I:P/A:N",
            "version": "2.0"
          },
          "exploitabilityScore": 6.8,
          "impactScore": 2.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "LOW",
          "userInteractionRequired": true
        },
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 5.4,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
            "version": "3.1"
          },
          "exploitabilityScore": 2.3,
          "impactScore": 2.7
        }
      },
      "lastModifiedDate": "2023-11-02T21:11Z",
      "publishedDate": "2020-03-25T17:15Z"
    }
  }
}

RHBA-2020:2435

Vulnerability from csaf_redhat - Published: 2020-06-17 19:44 - Updated: 2025-11-21 17:22

Summary

Red Hat Bug Fix Advisory: OpenShift Container Platform 4.3.25 packages update

Severity

Important

Notes

Topic: Red Hat OpenShift Container Platform release 4.3.25 is now available with updates to packages and images that fix several bugs.

Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

CVE-2020-2160

Jenkins 2.227 and earlier, LTS 2.204.5 and earlier uses different representations of request URL paths, which allows attackers to craft URLs that allow bypassing CSRF protection of any target URL.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-352 - Cross-Site Request Forgery (CSRF)

Affected products

Fixed 95 products

Product	Version	Remediation
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-ansible-test-0:4.3.25-202006060952.git.1.1253fde.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-kuryr-0:4.3.25-202006081518.git.1.240b401.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-kuryr-cni-0:4.3.25-202006081518.git.1.240b401.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-kuryr-common-0:4.3.25-202006081518.git.1.240b401.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-kuryr-controller-0:4.3.25-202006081518.git.1.240b401.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:python3-kuryr-kubernetes-0:4.3.25-202006081518.git.1.240b401.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-base-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-base-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cmsfs-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cmsfs-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cmsfs-fuse-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cmsfs-fuse-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cpacfstatsd-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cpacfstatsd-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cpuplugd-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cpuplugd-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-debugsource-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-devel-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-hmcdrvfs-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-hmcdrvfs-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-iucvterm-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-iucvterm-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-mon_statd-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-mon_statd-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-osasnmpd-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-osasnmpd-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-zdsfs-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-zdsfs-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-ziomon-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-ziomon-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix

Threats

Impact Important

CVE-2020-2161

5.4 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Affected products

Fixed 95 products

Product	Version	Remediation
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-ansible-test-0:4.3.25-202006060952.git.1.1253fde.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-kuryr-0:4.3.25-202006081518.git.1.240b401.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-kuryr-cni-0:4.3.25-202006081518.git.1.240b401.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-kuryr-common-0:4.3.25-202006081518.git.1.240b401.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-kuryr-controller-0:4.3.25-202006081518.git.1.240b401.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:python3-kuryr-kubernetes-0:4.3.25-202006081518.git.1.240b401.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-base-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-base-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cmsfs-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cmsfs-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cmsfs-fuse-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cmsfs-fuse-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cpacfstatsd-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cpacfstatsd-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cpuplugd-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cpuplugd-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-debugsource-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-devel-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-hmcdrvfs-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-hmcdrvfs-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-iucvterm-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-iucvterm-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-mon_statd-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-mon_statd-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-osasnmpd-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-osasnmpd-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-zdsfs-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-zdsfs-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-ziomon-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-ziomon-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2020-2162

Jenkins 2.227 and earlier, LTS 2.204.5 and earlier does not set Content-Security-Policy headers for files uploaded as file parameters to a build, resulting in a stored XSS vulnerability.

5.4 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Affected products

Fixed 95 products

Product	Version	Remediation
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-ansible-test-0:4.3.25-202006060952.git.1.1253fde.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-kuryr-0:4.3.25-202006081518.git.1.240b401.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-kuryr-cni-0:4.3.25-202006081518.git.1.240b401.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-kuryr-common-0:4.3.25-202006081518.git.1.240b401.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-kuryr-controller-0:4.3.25-202006081518.git.1.240b401.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:python3-kuryr-kubernetes-0:4.3.25-202006081518.git.1.240b401.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-base-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-base-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cmsfs-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cmsfs-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cmsfs-fuse-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cmsfs-fuse-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cpacfstatsd-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cpacfstatsd-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cpuplugd-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cpuplugd-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-debugsource-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-devel-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-hmcdrvfs-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-hmcdrvfs-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-iucvterm-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-iucvterm-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-mon_statd-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-mon_statd-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-osasnmpd-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-osasnmpd-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-zdsfs-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-zdsfs-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-ziomon-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-ziomon-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2020-2163

Jenkins 2.227 and earlier, LTS 2.204.5 and earlier improperly processes HTML content of list view column headers, resulting in a stored XSS vulnerability exploitable by users able to control column headers.

5.4 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Affected products

Fixed 95 products

Product	Version	Remediation
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-ansible-test-0:4.3.25-202006060952.git.1.1253fde.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-kuryr-0:4.3.25-202006081518.git.1.240b401.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-kuryr-cni-0:4.3.25-202006081518.git.1.240b401.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-kuryr-common-0:4.3.25-202006081518.git.1.240b401.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-kuryr-controller-0:4.3.25-202006081518.git.1.240b401.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:python3-kuryr-kubernetes-0:4.3.25-202006081518.git.1.240b401.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-base-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-base-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cmsfs-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cmsfs-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cmsfs-fuse-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cmsfs-fuse-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cpacfstatsd-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cpacfstatsd-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cpuplugd-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cpuplugd-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-debugsource-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-devel-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-hmcdrvfs-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-hmcdrvfs-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-iucvterm-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-iucvterm-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-mon_statd-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-mon_statd-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-osasnmpd-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-osasnmpd-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-zdsfs-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-zdsfs-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-ziomon-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-ziomon-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix

Threats

Impact Moderate

References

23 references

URL	Category
https://access.redhat.com/errata/RHBA-2020:2435	self
https://bugzilla.redhat.com/show_bug.cgi?id=1843457	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2020-2160	self
https://bugzilla.redhat.com/show_bug.cgi?id=1819190	external
https://www.cve.org/CVERecord?id=CVE-2020-2160	external
https://nvd.nist.gov/vuln/detail/CVE-2020-2160	external
https://jenkins.io/security/advisory/2020-03-25/#…	external
https://access.redhat.com/security/cve/CVE-2020-2161	self
https://bugzilla.redhat.com/show_bug.cgi?id=1819198	external
https://www.cve.org/CVERecord?id=CVE-2020-2161	external
https://nvd.nist.gov/vuln/detail/CVE-2020-2161	external
https://jenkins.io/security/advisory/2020-03-25/#…	external
https://access.redhat.com/security/cve/CVE-2020-2162	self
https://bugzilla.redhat.com/show_bug.cgi?id=1819211	external
https://www.cve.org/CVERecord?id=CVE-2020-2162	external
https://nvd.nist.gov/vuln/detail/CVE-2020-2162	external
https://jenkins.io/security/advisory/2020-03-25/#…	external
https://access.redhat.com/security/cve/CVE-2020-2163	self
https://bugzilla.redhat.com/show_bug.cgi?id=1819222	external
https://www.cve.org/CVERecord?id=CVE-2020-2163	external
https://nvd.nist.gov/vuln/detail/CVE-2020-2163	external
https://jenkins.io/security/advisory/2020-03-25/#…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Red Hat OpenShift Container Platform release 4.3.25 is now available with\nupdates to packages and images that fix several bugs.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Red Hat OpenShift Container Platform is Red Hat\u0027s cloud computing\nKubernetes application platform solution designed for on-premise or private\ncloud deployments.\n\nThis advisory contains the RPM packages for Red Hat OpenShift Container\nPlatform 4.3.25. See the following advisory for the container images for\nthis release:\n\nhttps://access.redhat.com/errata/RHBA-2020:2436\n\nAll OpenShift Container Platform 4.3 users are advised to upgrade to these\nupdated packages and images.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHBA-2020:2435",
        "url": "https://access.redhat.com/errata/RHBA-2020:2435"
      },
      {
        "category": "external",
        "summary": "1843457",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1843457"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhba-2020_2435.json"
      }
    ],
    "title": "Red Hat Bug Fix Advisory: OpenShift Container Platform 4.3.25 packages update",
    "tracking": {
      "current_release_date": "2025-11-21T17:22:35+00:00",
      "generator": {
        "date": "2025-11-21T17:22:35+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.6.12"
        }
      },
      "id": "RHBA-2020:2435",
      "initial_release_date": "2020-06-17T19:44:05+00:00",
      "revision_history": [
        {
          "date": "2020-06-17T19:44:05+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2020-06-17T19:44:05+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2025-11-21T17:22:35+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat OpenShift Container Platform 4.3",
                "product": {
                  "name": "Red Hat OpenShift Container Platform 4.3",
                  "product_id": "8Base-RHOSE-4.3",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:4.3::el8"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat OpenShift Container Platform 4.3",
                "product": {
                  "name": "Red Hat OpenShift Container Platform 4.3",
                  "product_id": "7Server-RH7-RHOSE-4.3",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:4.3::el7"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat OpenShift Enterprise"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "s390utils-2:2.6.0-23.el8.s390x",
                "product": {
                  "name": "s390utils-2:2.6.0-23.el8.s390x",
                  "product_id": "s390utils-2:2.6.0-23.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils@2.6.0-23.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "s390utils-base-2:2.6.0-23.el8.s390x",
                "product": {
                  "name": "s390utils-base-2:2.6.0-23.el8.s390x",
                  "product_id": "s390utils-base-2:2.6.0-23.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils-base@2.6.0-23.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "s390utils-cmsfs-2:2.6.0-23.el8.s390x",
                "product": {
                  "name": "s390utils-cmsfs-2:2.6.0-23.el8.s390x",
                  "product_id": "s390utils-cmsfs-2:2.6.0-23.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils-cmsfs@2.6.0-23.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "s390utils-cmsfs-fuse-2:2.6.0-23.el8.s390x",
                "product": {
                  "name": "s390utils-cmsfs-fuse-2:2.6.0-23.el8.s390x",
                  "product_id": "s390utils-cmsfs-fuse-2:2.6.0-23.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils-cmsfs-fuse@2.6.0-23.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "s390utils-cpacfstatsd-2:2.6.0-23.el8.s390x",
                "product": {
                  "name": "s390utils-cpacfstatsd-2:2.6.0-23.el8.s390x",
                  "product_id": "s390utils-cpacfstatsd-2:2.6.0-23.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils-cpacfstatsd@2.6.0-23.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "s390utils-cpuplugd-2:2.6.0-23.el8.s390x",
                "product": {
                  "name": "s390utils-cpuplugd-2:2.6.0-23.el8.s390x",
                  "product_id": "s390utils-cpuplugd-2:2.6.0-23.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils-cpuplugd@2.6.0-23.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "s390utils-devel-2:2.6.0-23.el8.s390x",
                "product": {
                  "name": "s390utils-devel-2:2.6.0-23.el8.s390x",
                  "product_id": "s390utils-devel-2:2.6.0-23.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils-devel@2.6.0-23.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "s390utils-hmcdrvfs-2:2.6.0-23.el8.s390x",
                "product": {
                  "name": "s390utils-hmcdrvfs-2:2.6.0-23.el8.s390x",
                  "product_id": "s390utils-hmcdrvfs-2:2.6.0-23.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils-hmcdrvfs@2.6.0-23.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "s390utils-iucvterm-2:2.6.0-23.el8.s390x",
                "product": {
                  "name": "s390utils-iucvterm-2:2.6.0-23.el8.s390x",
                  "product_id": "s390utils-iucvterm-2:2.6.0-23.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils-iucvterm@2.6.0-23.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "s390utils-mon_statd-2:2.6.0-23.el8.s390x",
                "product": {
                  "name": "s390utils-mon_statd-2:2.6.0-23.el8.s390x",
                  "product_id": "s390utils-mon_statd-2:2.6.0-23.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils-mon_statd@2.6.0-23.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "s390utils-osasnmpd-2:2.6.0-23.el8.s390x",
                "product": {
                  "name": "s390utils-osasnmpd-2:2.6.0-23.el8.s390x",
                  "product_id": "s390utils-osasnmpd-2:2.6.0-23.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils-osasnmpd@2.6.0-23.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "s390utils-zdsfs-2:2.6.0-23.el8.s390x",
                "product": {
                  "name": "s390utils-zdsfs-2:2.6.0-23.el8.s390x",
                  "product_id": "s390utils-zdsfs-2:2.6.0-23.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils-zdsfs@2.6.0-23.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "s390utils-ziomon-2:2.6.0-23.el8.s390x",
                "product": {
                  "name": "s390utils-ziomon-2:2.6.0-23.el8.s390x",
                  "product_id": "s390utils-ziomon-2:2.6.0-23.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils-ziomon@2.6.0-23.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "s390utils-debugsource-2:2.6.0-23.el8.s390x",
                "product": {
                  "name": "s390utils-debugsource-2:2.6.0-23.el8.s390x",
                  "product_id": "s390utils-debugsource-2:2.6.0-23.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils-debugsource@2.6.0-23.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "s390utils-base-debuginfo-2:2.6.0-23.el8.s390x",
                "product": {
                  "name": "s390utils-base-debuginfo-2:2.6.0-23.el8.s390x",
                  "product_id": "s390utils-base-debuginfo-2:2.6.0-23.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils-base-debuginfo@2.6.0-23.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "s390utils-cmsfs-debuginfo-2:2.6.0-23.el8.s390x",
                "product": {
                  "name": "s390utils-cmsfs-debuginfo-2:2.6.0-23.el8.s390x",
                  "product_id": "s390utils-cmsfs-debuginfo-2:2.6.0-23.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils-cmsfs-debuginfo@2.6.0-23.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "s390utils-cmsfs-fuse-debuginfo-2:2.6.0-23.el8.s390x",
                "product": {
                  "name": "s390utils-cmsfs-fuse-debuginfo-2:2.6.0-23.el8.s390x",
                  "product_id": "s390utils-cmsfs-fuse-debuginfo-2:2.6.0-23.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils-cmsfs-fuse-debuginfo@2.6.0-23.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "s390utils-cpacfstatsd-debuginfo-2:2.6.0-23.el8.s390x",
                "product": {
                  "name": "s390utils-cpacfstatsd-debuginfo-2:2.6.0-23.el8.s390x",
                  "product_id": "s390utils-cpacfstatsd-debuginfo-2:2.6.0-23.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils-cpacfstatsd-debuginfo@2.6.0-23.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "s390utils-cpuplugd-debuginfo-2:2.6.0-23.el8.s390x",
                "product": {
                  "name": "s390utils-cpuplugd-debuginfo-2:2.6.0-23.el8.s390x",
                  "product_id": "s390utils-cpuplugd-debuginfo-2:2.6.0-23.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils-cpuplugd-debuginfo@2.6.0-23.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "s390utils-debuginfo-2:2.6.0-23.el8.s390x",
                "product": {
                  "name": "s390utils-debuginfo-2:2.6.0-23.el8.s390x",
                  "product_id": "s390utils-debuginfo-2:2.6.0-23.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils-debuginfo@2.6.0-23.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "s390utils-hmcdrvfs-debuginfo-2:2.6.0-23.el8.s390x",
                "product": {
                  "name": "s390utils-hmcdrvfs-debuginfo-2:2.6.0-23.el8.s390x",
                  "product_id": "s390utils-hmcdrvfs-debuginfo-2:2.6.0-23.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils-hmcdrvfs-debuginfo@2.6.0-23.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "s390utils-iucvterm-debuginfo-2:2.6.0-23.el8.s390x",
                "product": {
                  "name": "s390utils-iucvterm-debuginfo-2:2.6.0-23.el8.s390x",
                  "product_id": "s390utils-iucvterm-debuginfo-2:2.6.0-23.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils-iucvterm-debuginfo@2.6.0-23.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "s390utils-mon_statd-debuginfo-2:2.6.0-23.el8.s390x",
                "product": {
                  "name": "s390utils-mon_statd-debuginfo-2:2.6.0-23.el8.s390x",
                  "product_id": "s390utils-mon_statd-debuginfo-2:2.6.0-23.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils-mon_statd-debuginfo@2.6.0-23.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "s390utils-osasnmpd-debuginfo-2:2.6.0-23.el8.s390x",
                "product": {
                  "name": "s390utils-osasnmpd-debuginfo-2:2.6.0-23.el8.s390x",
                  "product_id": "s390utils-osasnmpd-debuginfo-2:2.6.0-23.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils-osasnmpd-debuginfo@2.6.0-23.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "s390utils-zdsfs-debuginfo-2:2.6.0-23.el8.s390x",
                "product": {
                  "name": "s390utils-zdsfs-debuginfo-2:2.6.0-23.el8.s390x",
                  "product_id": "s390utils-zdsfs-debuginfo-2:2.6.0-23.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils-zdsfs-debuginfo@2.6.0-23.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "s390utils-ziomon-debuginfo-2:2.6.0-23.el8.s390x",
                "product": {
                  "name": "s390utils-ziomon-debuginfo-2:2.6.0-23.el8.s390x",
                  "product_id": "s390utils-ziomon-debuginfo-2:2.6.0-23.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils-ziomon-debuginfo@2.6.0-23.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
                "product": {
                  "name": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
                  "product_id": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o@1.16.6-15.dev.rhaos4.3.gitebc053b.el8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
                "product": {
                  "name": "cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
                  "product_id": "cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debugsource@1.16.6-15.dev.rhaos4.3.gitebc053b.el8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
                "product": {
                  "name": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
                  "product_id": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debuginfo@1.16.6-15.dev.rhaos4.3.gitebc053b.el8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "conmon-2:2.0.17-1.rhaos4.3.el8.s390x",
                "product": {
                  "name": "conmon-2:2.0.17-1.rhaos4.3.el8.s390x",
                  "product_id": "conmon-2:2.0.17-1.rhaos4.3.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/conmon@2.0.17-1.rhaos4.3.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.s390x",
                "product": {
                  "name": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.s390x",
                  "product_id": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-hyperkube@4.3.25-202006060952.git.1.96c30f6.el8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.s390x",
                "product": {
                  "name": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.s390x",
                  "product_id": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-clients@4.3.25-202006060952.git.1.fd93102.el8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.s390x",
                "product": {
                  "name": "machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.s390x",
                  "product_id": "machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/machine-config-daemon@4.3.25-202006081518.git.1.478b31a.el8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
                "product": {
                  "name": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
                  "product_id": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o@1.16.6-15.dev.rhaos4.3.gitebc053b.el7?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
                "product": {
                  "name": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
                  "product_id": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debuginfo@1.16.6-15.dev.rhaos4.3.gitebc053b.el7?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "conmon-2:2.0.17-1.rhaos4.3.el7.s390x",
                "product": {
                  "name": "conmon-2:2.0.17-1.rhaos4.3.el7.s390x",
                  "product_id": "conmon-2:2.0.17-1.rhaos4.3.el7.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/conmon@2.0.17-1.rhaos4.3.el7?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.s390x",
                "product": {
                  "name": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.s390x",
                  "product_id": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-hyperkube@4.3.25-202006060952.git.1.96c30f6.el7?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.s390x",
                "product": {
                  "name": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.s390x",
                  "product_id": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-clients@4.3.25-202006060952.git.1.fd93102.el7?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
                "product": {
                  "name": "atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
                  "product_id": "atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-enterprise-service-catalog@4.3.25-202006081518.git.1.52b3a66.el7?arch=s390x\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
                "product": {
                  "name": "atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
                  "product_id": "atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-enterprise-service-catalog-svcat@4.3.25-202006081518.git.1.52b3a66.el7?arch=s390x\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.s390x",
                "product": {
                  "name": "atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.s390x",
                  "product_id": "atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-service-idler@4.3.25-202006081518.git.1.79365c5.el7?arch=s390x"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "s390utils-2:2.6.0-23.el8.src",
                "product": {
                  "name": "s390utils-2:2.6.0-23.el8.src",
                  "product_id": "s390utils-2:2.6.0-23.el8.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils@2.6.0-23.el8?arch=src\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.src",
                "product": {
                  "name": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.src",
                  "product_id": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o@1.16.6-15.dev.rhaos4.3.gitebc053b.el8?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "conmon-2:2.0.17-1.rhaos4.3.el8.src",
                "product": {
                  "name": "conmon-2:2.0.17-1.rhaos4.3.el8.src",
                  "product_id": "conmon-2:2.0.17-1.rhaos4.3.el8.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/conmon@2.0.17-1.rhaos4.3.el8?arch=src\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-0:4.3.25-202006060952.git.1.96c30f6.el8.src",
                "product": {
                  "name": "openshift-0:4.3.25-202006060952.git.1.96c30f6.el8.src",
                  "product_id": "openshift-0:4.3.25-202006060952.git.1.96c30f6.el8.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift@4.3.25-202006060952.git.1.96c30f6.el8?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.src",
                "product": {
                  "name": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.src",
                  "product_id": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-clients@4.3.25-202006060952.git.1.fd93102.el8?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.src",
                "product": {
                  "name": "machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.src",
                  "product_id": "machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/machine-config-daemon@4.3.25-202006081518.git.1.478b31a.el8?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-kuryr-0:4.3.25-202006081518.git.1.240b401.el8.src",
                "product": {
                  "name": "openshift-kuryr-0:4.3.25-202006081518.git.1.240b401.el8.src",
                  "product_id": "openshift-kuryr-0:4.3.25-202006081518.git.1.240b401.el8.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-kuryr@4.3.25-202006081518.git.1.240b401.el8?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "jenkins-0:2.222.1.1591349991-1.el7.src",
                "product": {
                  "name": "jenkins-0:2.222.1.1591349991-1.el7.src",
                  "product_id": "jenkins-0:2.222.1.1591349991-1.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jenkins@2.222.1.1591349991-1.el7?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.src",
                "product": {
                  "name": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.src",
                  "product_id": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o@1.16.6-15.dev.rhaos4.3.gitebc053b.el7?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "conmon-2:2.0.17-1.rhaos4.3.el7.src",
                "product": {
                  "name": "conmon-2:2.0.17-1.rhaos4.3.el7.src",
                  "product_id": "conmon-2:2.0.17-1.rhaos4.3.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/conmon@2.0.17-1.rhaos4.3.el7?arch=src\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-0:4.3.25-202006060952.git.1.96c30f6.el7.src",
                "product": {
                  "name": "openshift-0:4.3.25-202006060952.git.1.96c30f6.el7.src",
                  "product_id": "openshift-0:4.3.25-202006060952.git.1.96c30f6.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift@4.3.25-202006060952.git.1.96c30f6.el7?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.src",
                "product": {
                  "name": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.src",
                  "product_id": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-clients@4.3.25-202006060952.git.1.fd93102.el7?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.src",
                "product": {
                  "name": "openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.src",
                  "product_id": "openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-ansible@4.3.25-202006060952.git.1.1253fde.el7?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.src",
                "product": {
                  "name": "atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.src",
                  "product_id": "atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-enterprise-service-catalog@4.3.25-202006081518.git.1.52b3a66.el7?arch=src\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.src",
                "product": {
                  "name": "atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.src",
                  "product_id": "atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-service-idler@4.3.25-202006081518.git.1.79365c5.el7?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
                "product": {
                  "name": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
                  "product_id": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o@1.16.6-15.dev.rhaos4.3.gitebc053b.el8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
                "product": {
                  "name": "cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
                  "product_id": "cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debugsource@1.16.6-15.dev.rhaos4.3.gitebc053b.el8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
                "product": {
                  "name": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
                  "product_id": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debuginfo@1.16.6-15.dev.rhaos4.3.gitebc053b.el8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "conmon-2:2.0.17-1.rhaos4.3.el8.ppc64le",
                "product": {
                  "name": "conmon-2:2.0.17-1.rhaos4.3.el8.ppc64le",
                  "product_id": "conmon-2:2.0.17-1.rhaos4.3.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/conmon@2.0.17-1.rhaos4.3.el8?arch=ppc64le\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.ppc64le",
                "product": {
                  "name": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.ppc64le",
                  "product_id": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-hyperkube@4.3.25-202006060952.git.1.96c30f6.el8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.ppc64le",
                "product": {
                  "name": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.ppc64le",
                  "product_id": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-clients@4.3.25-202006060952.git.1.fd93102.el8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.ppc64le",
                "product": {
                  "name": "machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.ppc64le",
                  "product_id": "machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/machine-config-daemon@4.3.25-202006081518.git.1.478b31a.el8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
                "product": {
                  "name": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
                  "product_id": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o@1.16.6-15.dev.rhaos4.3.gitebc053b.el7?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
                "product": {
                  "name": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
                  "product_id": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debuginfo@1.16.6-15.dev.rhaos4.3.gitebc053b.el7?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "conmon-2:2.0.17-1.rhaos4.3.el7.ppc64le",
                "product": {
                  "name": "conmon-2:2.0.17-1.rhaos4.3.el7.ppc64le",
                  "product_id": "conmon-2:2.0.17-1.rhaos4.3.el7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/conmon@2.0.17-1.rhaos4.3.el7?arch=ppc64le\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.ppc64le",
                "product": {
                  "name": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.ppc64le",
                  "product_id": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-hyperkube@4.3.25-202006060952.git.1.96c30f6.el7?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.ppc64le",
                "product": {
                  "name": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.ppc64le",
                  "product_id": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-clients@4.3.25-202006060952.git.1.fd93102.el7?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
                "product": {
                  "name": "atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
                  "product_id": "atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-enterprise-service-catalog@4.3.25-202006081518.git.1.52b3a66.el7?arch=ppc64le\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
                "product": {
                  "name": "atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
                  "product_id": "atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-enterprise-service-catalog-svcat@4.3.25-202006081518.git.1.52b3a66.el7?arch=ppc64le\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.ppc64le",
                "product": {
                  "name": "atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.ppc64le",
                  "product_id": "atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-service-idler@4.3.25-202006081518.git.1.79365c5.el7?arch=ppc64le"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
                "product": {
                  "name": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
                  "product_id": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o@1.16.6-15.dev.rhaos4.3.gitebc053b.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
                "product": {
                  "name": "cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
                  "product_id": "cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debugsource@1.16.6-15.dev.rhaos4.3.gitebc053b.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
                "product": {
                  "name": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
                  "product_id": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debuginfo@1.16.6-15.dev.rhaos4.3.gitebc053b.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "conmon-2:2.0.17-1.rhaos4.3.el8.x86_64",
                "product": {
                  "name": "conmon-2:2.0.17-1.rhaos4.3.el8.x86_64",
                  "product_id": "conmon-2:2.0.17-1.rhaos4.3.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/conmon@2.0.17-1.rhaos4.3.el8?arch=x86_64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.x86_64",
                "product": {
                  "name": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.x86_64",
                  "product_id": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-hyperkube@4.3.25-202006060952.git.1.96c30f6.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
                "product": {
                  "name": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
                  "product_id": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-clients@4.3.25-202006060952.git.1.fd93102.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
                "product": {
                  "name": "openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
                  "product_id": "openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-clients-redistributable@4.3.25-202006060952.git.1.fd93102.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.x86_64",
                "product": {
                  "name": "machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.x86_64",
                  "product_id": "machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/machine-config-daemon@4.3.25-202006081518.git.1.478b31a.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
                "product": {
                  "name": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
                  "product_id": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o@1.16.6-15.dev.rhaos4.3.gitebc053b.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
                "product": {
                  "name": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
                  "product_id": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debuginfo@1.16.6-15.dev.rhaos4.3.gitebc053b.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "conmon-2:2.0.17-1.rhaos4.3.el7.x86_64",
                "product": {
                  "name": "conmon-2:2.0.17-1.rhaos4.3.el7.x86_64",
                  "product_id": "conmon-2:2.0.17-1.rhaos4.3.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/conmon@2.0.17-1.rhaos4.3.el7?arch=x86_64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.x86_64",
                "product": {
                  "name": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.x86_64",
                  "product_id": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-hyperkube@4.3.25-202006060952.git.1.96c30f6.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
                "product": {
                  "name": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
                  "product_id": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-clients@4.3.25-202006060952.git.1.fd93102.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
                "product": {
                  "name": "openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
                  "product_id": "openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-clients-redistributable@4.3.25-202006060952.git.1.fd93102.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
                "product": {
                  "name": "atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
                  "product_id": "atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-enterprise-service-catalog@4.3.25-202006081518.git.1.52b3a66.el7?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
                "product": {
                  "name": "atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
                  "product_id": "atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-enterprise-service-catalog-svcat@4.3.25-202006081518.git.1.52b3a66.el7?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.x86_64",
                "product": {
                  "name": "atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.x86_64",
                  "product_id": "atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-service-idler@4.3.25-202006081518.git.1.79365c5.el7?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "openshift-kuryr-cni-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
                "product": {
                  "name": "openshift-kuryr-cni-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
                  "product_id": "openshift-kuryr-cni-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-kuryr-cni@4.3.25-202006081518.git.1.240b401.el8?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-kuryr-common-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
                "product": {
                  "name": "openshift-kuryr-common-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
                  "product_id": "openshift-kuryr-common-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-kuryr-common@4.3.25-202006081518.git.1.240b401.el8?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-kuryr-controller-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
                "product": {
                  "name": "openshift-kuryr-controller-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
                  "product_id": "openshift-kuryr-controller-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-kuryr-controller@4.3.25-202006081518.git.1.240b401.el8?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python3-kuryr-kubernetes-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
                "product": {
                  "name": "python3-kuryr-kubernetes-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
                  "product_id": "python3-kuryr-kubernetes-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-kuryr-kubernetes@4.3.25-202006081518.git.1.240b401.el8?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "jenkins-0:2.222.1.1591349991-1.el7.noarch",
                "product": {
                  "name": "jenkins-0:2.222.1.1591349991-1.el7.noarch",
                  "product_id": "jenkins-0:2.222.1.1591349991-1.el7.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jenkins@2.222.1.1591349991-1.el7?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
                "product": {
                  "name": "openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
                  "product_id": "openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-ansible@4.3.25-202006060952.git.1.1253fde.el7?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-ansible-test-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
                "product": {
                  "name": "openshift-ansible-test-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
                  "product_id": "openshift-ansible-test-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-ansible-test@4.3.25-202006060952.git.1.1253fde.el7?arch=noarch"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le"
        },
        "product_reference": "atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x"
        },
        "product_reference": "atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.src as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.src"
        },
        "product_reference": "atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64 as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64"
        },
        "product_reference": "atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le"
        },
        "product_reference": "atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x"
        },
        "product_reference": "atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64 as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64"
        },
        "product_reference": "atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.ppc64le as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.ppc64le"
        },
        "product_reference": "atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.ppc64le",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.s390x"
        },
        "product_reference": "atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.s390x",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.src as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.src"
        },
        "product_reference": "atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.x86_64 as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.x86_64"
        },
        "product_reference": "atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "conmon-2:2.0.17-1.rhaos4.3.el7.ppc64le as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.ppc64le"
        },
        "product_reference": "conmon-2:2.0.17-1.rhaos4.3.el7.ppc64le",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "conmon-2:2.0.17-1.rhaos4.3.el7.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.s390x"
        },
        "product_reference": "conmon-2:2.0.17-1.rhaos4.3.el7.s390x",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "conmon-2:2.0.17-1.rhaos4.3.el7.src as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.src"
        },
        "product_reference": "conmon-2:2.0.17-1.rhaos4.3.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "conmon-2:2.0.17-1.rhaos4.3.el7.x86_64 as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.x86_64"
        },
        "product_reference": "conmon-2:2.0.17-1.rhaos4.3.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le"
        },
        "product_reference": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x"
        },
        "product_reference": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.src as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.src"
        },
        "product_reference": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64 as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64"
        },
        "product_reference": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le"
        },
        "product_reference": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x"
        },
        "product_reference": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64 as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64"
        },
        "product_reference": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jenkins-0:2.222.1.1591349991-1.el7.noarch as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.noarch"
        },
        "product_reference": "jenkins-0:2.222.1.1591349991-1.el7.noarch",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jenkins-0:2.222.1.1591349991-1.el7.src as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.src"
        },
        "product_reference": "jenkins-0:2.222.1.1591349991-1.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-0:4.3.25-202006060952.git.1.96c30f6.el7.src as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el7.src"
        },
        "product_reference": "openshift-0:4.3.25-202006060952.git.1.96c30f6.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.noarch as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.noarch"
        },
        "product_reference": "openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.src as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.src"
        },
        "product_reference": "openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-ansible-test-0:4.3.25-202006060952.git.1.1253fde.el7.noarch as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:openshift-ansible-test-0:4.3.25-202006060952.git.1.1253fde.el7.noarch"
        },
        "product_reference": "openshift-ansible-test-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.ppc64le as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.ppc64le"
        },
        "product_reference": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.ppc64le",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.s390x"
        },
        "product_reference": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.s390x",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.src as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.src"
        },
        "product_reference": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64 as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64"
        },
        "product_reference": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64 as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64"
        },
        "product_reference": "openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.ppc64le as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.ppc64le"
        },
        "product_reference": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.ppc64le",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.s390x"
        },
        "product_reference": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.s390x",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.x86_64 as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.x86_64"
        },
        "product_reference": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "conmon-2:2.0.17-1.rhaos4.3.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.ppc64le"
        },
        "product_reference": "conmon-2:2.0.17-1.rhaos4.3.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "conmon-2:2.0.17-1.rhaos4.3.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.s390x"
        },
        "product_reference": "conmon-2:2.0.17-1.rhaos4.3.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "conmon-2:2.0.17-1.rhaos4.3.el8.src as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.src"
        },
        "product_reference": "conmon-2:2.0.17-1.rhaos4.3.el8.src",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "conmon-2:2.0.17-1.rhaos4.3.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.x86_64"
        },
        "product_reference": "conmon-2:2.0.17-1.rhaos4.3.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le"
        },
        "product_reference": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x"
        },
        "product_reference": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.src as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.src"
        },
        "product_reference": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.src",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64"
        },
        "product_reference": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le"
        },
        "product_reference": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x"
        },
        "product_reference": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64"
        },
        "product_reference": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le"
        },
        "product_reference": "cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x"
        },
        "product_reference": "cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64"
        },
        "product_reference": "cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.ppc64le"
        },
        "product_reference": "machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.s390x"
        },
        "product_reference": "machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.src as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.src"
        },
        "product_reference": "machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.src",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.x86_64"
        },
        "product_reference": "machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-0:4.3.25-202006060952.git.1.96c30f6.el8.src as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el8.src"
        },
        "product_reference": "openshift-0:4.3.25-202006060952.git.1.96c30f6.el8.src",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.ppc64le"
        },
        "product_reference": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.s390x"
        },
        "product_reference": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.src as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.src"
        },
        "product_reference": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.src",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64"
        },
        "product_reference": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64"
        },
        "product_reference": "openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.ppc64le"
        },
        "product_reference": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.s390x"
        },
        "product_reference": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.x86_64"
        },
        "product_reference": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-kuryr-0:4.3.25-202006081518.git.1.240b401.el8.src as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:openshift-kuryr-0:4.3.25-202006081518.git.1.240b401.el8.src"
        },
        "product_reference": "openshift-kuryr-0:4.3.25-202006081518.git.1.240b401.el8.src",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-kuryr-cni-0:4.3.25-202006081518.git.1.240b401.el8.noarch as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:openshift-kuryr-cni-0:4.3.25-202006081518.git.1.240b401.el8.noarch"
        },
        "product_reference": "openshift-kuryr-cni-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-kuryr-common-0:4.3.25-202006081518.git.1.240b401.el8.noarch as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:openshift-kuryr-common-0:4.3.25-202006081518.git.1.240b401.el8.noarch"
        },
        "product_reference": "openshift-kuryr-common-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-kuryr-controller-0:4.3.25-202006081518.git.1.240b401.el8.noarch as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:openshift-kuryr-controller-0:4.3.25-202006081518.git.1.240b401.el8.noarch"
        },
        "product_reference": "openshift-kuryr-controller-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-kuryr-kubernetes-0:4.3.25-202006081518.git.1.240b401.el8.noarch as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:python3-kuryr-kubernetes-0:4.3.25-202006081518.git.1.240b401.el8.noarch"
        },
        "product_reference": "python3-kuryr-kubernetes-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-2:2.6.0-23.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.s390x"
        },
        "product_reference": "s390utils-2:2.6.0-23.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-2:2.6.0-23.el8.src as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.src"
        },
        "product_reference": "s390utils-2:2.6.0-23.el8.src",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-base-2:2.6.0-23.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-base-2:2.6.0-23.el8.s390x"
        },
        "product_reference": "s390utils-base-2:2.6.0-23.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-base-debuginfo-2:2.6.0-23.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-base-debuginfo-2:2.6.0-23.el8.s390x"
        },
        "product_reference": "s390utils-base-debuginfo-2:2.6.0-23.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-cmsfs-2:2.6.0-23.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-cmsfs-2:2.6.0-23.el8.s390x"
        },
        "product_reference": "s390utils-cmsfs-2:2.6.0-23.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-cmsfs-debuginfo-2:2.6.0-23.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-cmsfs-debuginfo-2:2.6.0-23.el8.s390x"
        },
        "product_reference": "s390utils-cmsfs-debuginfo-2:2.6.0-23.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-cmsfs-fuse-2:2.6.0-23.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-cmsfs-fuse-2:2.6.0-23.el8.s390x"
        },
        "product_reference": "s390utils-cmsfs-fuse-2:2.6.0-23.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-cmsfs-fuse-debuginfo-2:2.6.0-23.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-cmsfs-fuse-debuginfo-2:2.6.0-23.el8.s390x"
        },
        "product_reference": "s390utils-cmsfs-fuse-debuginfo-2:2.6.0-23.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-cpacfstatsd-2:2.6.0-23.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-cpacfstatsd-2:2.6.0-23.el8.s390x"
        },
        "product_reference": "s390utils-cpacfstatsd-2:2.6.0-23.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-cpacfstatsd-debuginfo-2:2.6.0-23.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-cpacfstatsd-debuginfo-2:2.6.0-23.el8.s390x"
        },
        "product_reference": "s390utils-cpacfstatsd-debuginfo-2:2.6.0-23.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-cpuplugd-2:2.6.0-23.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-cpuplugd-2:2.6.0-23.el8.s390x"
        },
        "product_reference": "s390utils-cpuplugd-2:2.6.0-23.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-cpuplugd-debuginfo-2:2.6.0-23.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-cpuplugd-debuginfo-2:2.6.0-23.el8.s390x"
        },
        "product_reference": "s390utils-cpuplugd-debuginfo-2:2.6.0-23.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-debuginfo-2:2.6.0-23.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-debuginfo-2:2.6.0-23.el8.s390x"
        },
        "product_reference": "s390utils-debuginfo-2:2.6.0-23.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-debugsource-2:2.6.0-23.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-debugsource-2:2.6.0-23.el8.s390x"
        },
        "product_reference": "s390utils-debugsource-2:2.6.0-23.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-devel-2:2.6.0-23.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-devel-2:2.6.0-23.el8.s390x"
        },
        "product_reference": "s390utils-devel-2:2.6.0-23.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-hmcdrvfs-2:2.6.0-23.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-hmcdrvfs-2:2.6.0-23.el8.s390x"
        },
        "product_reference": "s390utils-hmcdrvfs-2:2.6.0-23.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-hmcdrvfs-debuginfo-2:2.6.0-23.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-hmcdrvfs-debuginfo-2:2.6.0-23.el8.s390x"
        },
        "product_reference": "s390utils-hmcdrvfs-debuginfo-2:2.6.0-23.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-iucvterm-2:2.6.0-23.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-iucvterm-2:2.6.0-23.el8.s390x"
        },
        "product_reference": "s390utils-iucvterm-2:2.6.0-23.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-iucvterm-debuginfo-2:2.6.0-23.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-iucvterm-debuginfo-2:2.6.0-23.el8.s390x"
        },
        "product_reference": "s390utils-iucvterm-debuginfo-2:2.6.0-23.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-mon_statd-2:2.6.0-23.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-mon_statd-2:2.6.0-23.el8.s390x"
        },
        "product_reference": "s390utils-mon_statd-2:2.6.0-23.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-mon_statd-debuginfo-2:2.6.0-23.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-mon_statd-debuginfo-2:2.6.0-23.el8.s390x"
        },
        "product_reference": "s390utils-mon_statd-debuginfo-2:2.6.0-23.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-osasnmpd-2:2.6.0-23.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-osasnmpd-2:2.6.0-23.el8.s390x"
        },
        "product_reference": "s390utils-osasnmpd-2:2.6.0-23.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-osasnmpd-debuginfo-2:2.6.0-23.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-osasnmpd-debuginfo-2:2.6.0-23.el8.s390x"
        },
        "product_reference": "s390utils-osasnmpd-debuginfo-2:2.6.0-23.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-zdsfs-2:2.6.0-23.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-zdsfs-2:2.6.0-23.el8.s390x"
        },
        "product_reference": "s390utils-zdsfs-2:2.6.0-23.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-zdsfs-debuginfo-2:2.6.0-23.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-zdsfs-debuginfo-2:2.6.0-23.el8.s390x"
        },
        "product_reference": "s390utils-zdsfs-debuginfo-2:2.6.0-23.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-ziomon-2:2.6.0-23.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-ziomon-2:2.6.0-23.el8.s390x"
        },
        "product_reference": "s390utils-ziomon-2:2.6.0-23.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-ziomon-debuginfo-2:2.6.0-23.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-ziomon-debuginfo-2:2.6.0-23.el8.s390x"
        },
        "product_reference": "s390utils-ziomon-debuginfo-2:2.6.0-23.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2020-2160",
      "cwe": {
        "id": "CWE-352",
        "name": "Cross-Site Request Forgery (CSRF)"
      },
      "discovery_date": "2020-03-26T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1819190"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Jenkins 2.227 and earlier, LTS 2.204.5 and earlier uses different representations of request URL paths, which allows attackers to craft URLs that allow bypassing CSRF protection of any target URL.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "jenkins: CSRF protection bypass via crafted URLs",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.src",
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.s390x",
          "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.src",
          "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.s390x",
          "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.src",
          "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
          "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.src",
          "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
          "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.noarch",
          "7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.src",
          "7Server-RH7-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el7.src",
          "7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
          "7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.src",
          "7Server-RH7-RHOSE-4.3:openshift-ansible-test-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
          "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.s390x",
          "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.src",
          "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.s390x",
          "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.x86_64",
          "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.ppc64le",
          "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.s390x",
          "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.src",
          "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.x86_64",
          "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
          "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
          "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.src",
          "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
          "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
          "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
          "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
          "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
          "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
          "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
          "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.ppc64le",
          "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.s390x",
          "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.src",
          "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.x86_64",
          "8Base-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el8.src",
          "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.ppc64le",
          "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.s390x",
          "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.src",
          "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
          "8Base-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
          "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.ppc64le",
          "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.s390x",
          "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.x86_64",
          "8Base-RHOSE-4.3:openshift-kuryr-0:4.3.25-202006081518.git.1.240b401.el8.src",
          "8Base-RHOSE-4.3:openshift-kuryr-cni-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
          "8Base-RHOSE-4.3:openshift-kuryr-common-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
          "8Base-RHOSE-4.3:openshift-kuryr-controller-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
          "8Base-RHOSE-4.3:python3-kuryr-kubernetes-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
          "8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.src",
          "8Base-RHOSE-4.3:s390utils-base-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-base-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cmsfs-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cmsfs-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cmsfs-fuse-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cmsfs-fuse-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cpacfstatsd-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cpacfstatsd-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cpuplugd-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cpuplugd-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-debugsource-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-devel-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-hmcdrvfs-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-hmcdrvfs-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-iucvterm-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-iucvterm-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-mon_statd-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-mon_statd-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-osasnmpd-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-osasnmpd-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-zdsfs-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-zdsfs-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-ziomon-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-ziomon-debuginfo-2:2.6.0-23.el8.s390x"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2020-2160"
        },
        {
          "category": "external",
          "summary": "RHBZ#1819190",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1819190"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2020-2160",
          "url": "https://www.cve.org/CVERecord?id=CVE-2020-2160"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2160",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2160"
        },
        {
          "category": "external",
          "summary": "https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1774",
          "url": "https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1774"
        }
      ],
      "release_date": "2020-03-25T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2020-06-17T19:44:05+00:00",
          "details": "For OpenShift Container Platform 4.3 see the following documentation, which\nwill be updated shortly for release 4.3.25, for important instructions on\nhow to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.openshift.com/container-platform/4.3/release_notes/ocp-4-3-release-notes.html\n\nDetails on how to access this content are available at\nhttps://docs.openshift.com/container-platform/4.3/updating/updating-cluster-cli.html.",
          "product_ids": [
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.src",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.s390x",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.src",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.s390x",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.src",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.src",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
            "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.noarch",
            "7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
            "7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-ansible-test-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.s390x",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.s390x",
            "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.x86_64",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.ppc64le",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.s390x",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.src",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.x86_64",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.src",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
            "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
            "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
            "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
            "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
            "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
            "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.ppc64le",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.s390x",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.src",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el8.src",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.ppc64le",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.s390x",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.src",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.ppc64le",
            "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.s390x",
            "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-kuryr-0:4.3.25-202006081518.git.1.240b401.el8.src",
            "8Base-RHOSE-4.3:openshift-kuryr-cni-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:openshift-kuryr-common-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:openshift-kuryr-controller-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:python3-kuryr-kubernetes-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.src",
            "8Base-RHOSE-4.3:s390utils-base-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-base-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-fuse-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-fuse-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpacfstatsd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpacfstatsd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpuplugd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpuplugd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-debugsource-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-devel-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-hmcdrvfs-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-hmcdrvfs-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-iucvterm-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-iucvterm-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-mon_statd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-mon_statd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-osasnmpd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-osasnmpd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-zdsfs-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-zdsfs-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-ziomon-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-ziomon-debuginfo-2:2.6.0-23.el8.s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHBA-2020:2435"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.src",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.s390x",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.src",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.s390x",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.src",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.src",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
            "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.noarch",
            "7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
            "7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-ansible-test-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.s390x",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.s390x",
            "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.x86_64",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.ppc64le",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.s390x",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.src",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.x86_64",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.src",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
            "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
            "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
            "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
            "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
            "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
            "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.ppc64le",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.s390x",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.src",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el8.src",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.ppc64le",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.s390x",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.src",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.ppc64le",
            "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.s390x",
            "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-kuryr-0:4.3.25-202006081518.git.1.240b401.el8.src",
            "8Base-RHOSE-4.3:openshift-kuryr-cni-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:openshift-kuryr-common-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:openshift-kuryr-controller-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:python3-kuryr-kubernetes-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.src",
            "8Base-RHOSE-4.3:s390utils-base-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-base-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-fuse-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-fuse-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpacfstatsd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpacfstatsd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpuplugd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpuplugd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-debugsource-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-devel-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-hmcdrvfs-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-hmcdrvfs-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-iucvterm-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-iucvterm-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-mon_statd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-mon_statd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-osasnmpd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-osasnmpd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-zdsfs-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-zdsfs-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-ziomon-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-ziomon-debuginfo-2:2.6.0-23.el8.s390x"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "jenkins: CSRF protection bypass via crafted URLs"
    },
    {
      "cve": "CVE-2020-2161",
      "cwe": {
        "id": "CWE-79",
        "name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
      },
      "discovery_date": "2020-03-26T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1819198"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Jenkins 2.227 and earlier, LTS 2.204.5 and earlier does not properly escape node labels that are shown in the form validation for label expressions on job configuration pages, resulting in a stored XSS vulnerability exploitable by users able to define node labels.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "jenkins: XSS in job configuration pages",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.src",
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.s390x",
          "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.src",
          "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.s390x",
          "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.src",
          "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
          "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.src",
          "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
          "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.noarch",
          "7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.src",
          "7Server-RH7-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el7.src",
          "7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
          "7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.src",
          "7Server-RH7-RHOSE-4.3:openshift-ansible-test-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
          "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.s390x",
          "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.src",
          "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.s390x",
          "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.x86_64",
          "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.ppc64le",
          "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.s390x",
          "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.src",
          "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.x86_64",
          "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
          "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
          "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.src",
          "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
          "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
          "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
          "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
          "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
          "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
          "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
          "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.ppc64le",
          "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.s390x",
          "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.src",
          "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.x86_64",
          "8Base-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el8.src",
          "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.ppc64le",
          "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.s390x",
          "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.src",
          "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
          "8Base-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
          "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.ppc64le",
          "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.s390x",
          "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.x86_64",
          "8Base-RHOSE-4.3:openshift-kuryr-0:4.3.25-202006081518.git.1.240b401.el8.src",
          "8Base-RHOSE-4.3:openshift-kuryr-cni-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
          "8Base-RHOSE-4.3:openshift-kuryr-common-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
          "8Base-RHOSE-4.3:openshift-kuryr-controller-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
          "8Base-RHOSE-4.3:python3-kuryr-kubernetes-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
          "8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.src",
          "8Base-RHOSE-4.3:s390utils-base-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-base-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cmsfs-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cmsfs-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cmsfs-fuse-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cmsfs-fuse-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cpacfstatsd-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cpacfstatsd-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cpuplugd-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cpuplugd-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-debugsource-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-devel-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-hmcdrvfs-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-hmcdrvfs-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-iucvterm-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-iucvterm-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-mon_statd-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-mon_statd-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-osasnmpd-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-osasnmpd-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-zdsfs-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-zdsfs-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-ziomon-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-ziomon-debuginfo-2:2.6.0-23.el8.s390x"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2020-2161"
        },
        {
          "category": "external",
          "summary": "RHBZ#1819198",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1819198"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2020-2161",
          "url": "https://www.cve.org/CVERecord?id=CVE-2020-2161"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2161",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2161"
        },
        {
          "category": "external",
          "summary": "https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1781",
          "url": "https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1781"
        }
      ],
      "release_date": "2020-03-25T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2020-06-17T19:44:05+00:00",
          "details": "For OpenShift Container Platform 4.3 see the following documentation, which\nwill be updated shortly for release 4.3.25, for important instructions on\nhow to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.openshift.com/container-platform/4.3/release_notes/ocp-4-3-release-notes.html\n\nDetails on how to access this content are available at\nhttps://docs.openshift.com/container-platform/4.3/updating/updating-cluster-cli.html.",
          "product_ids": [
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.src",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.s390x",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.src",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.s390x",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.src",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.src",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
            "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.noarch",
            "7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
            "7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-ansible-test-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.s390x",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.s390x",
            "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.x86_64",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.ppc64le",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.s390x",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.src",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.x86_64",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.src",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
            "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
            "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
            "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
            "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
            "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
            "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.ppc64le",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.s390x",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.src",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el8.src",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.ppc64le",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.s390x",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.src",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.ppc64le",
            "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.s390x",
            "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-kuryr-0:4.3.25-202006081518.git.1.240b401.el8.src",
            "8Base-RHOSE-4.3:openshift-kuryr-cni-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:openshift-kuryr-common-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:openshift-kuryr-controller-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:python3-kuryr-kubernetes-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.src",
            "8Base-RHOSE-4.3:s390utils-base-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-base-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-fuse-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-fuse-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpacfstatsd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpacfstatsd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpuplugd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpuplugd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-debugsource-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-devel-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-hmcdrvfs-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-hmcdrvfs-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-iucvterm-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-iucvterm-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-mon_statd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-mon_statd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-osasnmpd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-osasnmpd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-zdsfs-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-zdsfs-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-ziomon-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-ziomon-debuginfo-2:2.6.0-23.el8.s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHBA-2020:2435"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 5.4,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.src",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.s390x",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.src",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.s390x",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.src",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.src",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
            "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.noarch",
            "7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
            "7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-ansible-test-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.s390x",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.s390x",
            "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.x86_64",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.ppc64le",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.s390x",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.src",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.x86_64",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.src",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
            "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
            "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
            "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
            "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
            "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
            "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.ppc64le",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.s390x",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.src",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el8.src",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.ppc64le",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.s390x",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.src",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.ppc64le",
            "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.s390x",
            "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-kuryr-0:4.3.25-202006081518.git.1.240b401.el8.src",
            "8Base-RHOSE-4.3:openshift-kuryr-cni-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:openshift-kuryr-common-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:openshift-kuryr-controller-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:python3-kuryr-kubernetes-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.src",
            "8Base-RHOSE-4.3:s390utils-base-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-base-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-fuse-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-fuse-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpacfstatsd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpacfstatsd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpuplugd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpuplugd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-debugsource-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-devel-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-hmcdrvfs-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-hmcdrvfs-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-iucvterm-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-iucvterm-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-mon_statd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-mon_statd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-osasnmpd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-osasnmpd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-zdsfs-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-zdsfs-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-ziomon-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-ziomon-debuginfo-2:2.6.0-23.el8.s390x"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "jenkins: XSS in job configuration pages"
    },
    {
      "cve": "CVE-2020-2162",
      "cwe": {
        "id": "CWE-79",
        "name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
      },
      "discovery_date": "2020-03-26T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1819211"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Jenkins 2.227 and earlier, LTS 2.204.5 and earlier does not set Content-Security-Policy headers for files uploaded as file parameters to a build, resulting in a stored XSS vulnerability.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "jenkins: Content-Security-Policy headers for files uploaded leads to XSS",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.src",
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.s390x",
          "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.src",
          "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.s390x",
          "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.src",
          "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
          "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.src",
          "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
          "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.noarch",
          "7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.src",
          "7Server-RH7-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el7.src",
          "7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
          "7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.src",
          "7Server-RH7-RHOSE-4.3:openshift-ansible-test-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
          "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.s390x",
          "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.src",
          "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.s390x",
          "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.x86_64",
          "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.ppc64le",
          "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.s390x",
          "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.src",
          "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.x86_64",
          "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
          "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
          "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.src",
          "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
          "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
          "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
          "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
          "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
          "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
          "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
          "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.ppc64le",
          "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.s390x",
          "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.src",
          "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.x86_64",
          "8Base-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el8.src",
          "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.ppc64le",
          "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.s390x",
          "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.src",
          "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
          "8Base-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
          "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.ppc64le",
          "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.s390x",
          "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.x86_64",
          "8Base-RHOSE-4.3:openshift-kuryr-0:4.3.25-202006081518.git.1.240b401.el8.src",
          "8Base-RHOSE-4.3:openshift-kuryr-cni-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
          "8Base-RHOSE-4.3:openshift-kuryr-common-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
          "8Base-RHOSE-4.3:openshift-kuryr-controller-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
          "8Base-RHOSE-4.3:python3-kuryr-kubernetes-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
          "8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.src",
          "8Base-RHOSE-4.3:s390utils-base-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-base-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cmsfs-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cmsfs-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cmsfs-fuse-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cmsfs-fuse-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cpacfstatsd-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cpacfstatsd-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cpuplugd-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cpuplugd-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-debugsource-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-devel-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-hmcdrvfs-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-hmcdrvfs-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-iucvterm-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-iucvterm-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-mon_statd-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-mon_statd-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-osasnmpd-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-osasnmpd-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-zdsfs-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-zdsfs-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-ziomon-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-ziomon-debuginfo-2:2.6.0-23.el8.s390x"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2020-2162"
        },
        {
          "category": "external",
          "summary": "RHBZ#1819211",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1819211"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2020-2162",
          "url": "https://www.cve.org/CVERecord?id=CVE-2020-2162"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2162",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2162"
        },
        {
          "category": "external",
          "summary": "https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1793",
          "url": "https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1793"
        }
      ],
      "release_date": "2020-03-25T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2020-06-17T19:44:05+00:00",
          "details": "For OpenShift Container Platform 4.3 see the following documentation, which\nwill be updated shortly for release 4.3.25, for important instructions on\nhow to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.openshift.com/container-platform/4.3/release_notes/ocp-4-3-release-notes.html\n\nDetails on how to access this content are available at\nhttps://docs.openshift.com/container-platform/4.3/updating/updating-cluster-cli.html.",
          "product_ids": [
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.src",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.s390x",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.src",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.s390x",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.src",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.src",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
            "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.noarch",
            "7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
            "7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-ansible-test-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.s390x",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.s390x",
            "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.x86_64",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.ppc64le",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.s390x",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.src",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.x86_64",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.src",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
            "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
            "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
            "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
            "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
            "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
            "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.ppc64le",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.s390x",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.src",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el8.src",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.ppc64le",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.s390x",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.src",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.ppc64le",
            "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.s390x",
            "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-kuryr-0:4.3.25-202006081518.git.1.240b401.el8.src",
            "8Base-RHOSE-4.3:openshift-kuryr-cni-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:openshift-kuryr-common-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:openshift-kuryr-controller-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:python3-kuryr-kubernetes-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.src",
            "8Base-RHOSE-4.3:s390utils-base-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-base-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-fuse-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-fuse-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpacfstatsd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpacfstatsd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpuplugd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpuplugd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-debugsource-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-devel-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-hmcdrvfs-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-hmcdrvfs-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-iucvterm-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-iucvterm-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-mon_statd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-mon_statd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-osasnmpd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-osasnmpd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-zdsfs-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-zdsfs-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-ziomon-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-ziomon-debuginfo-2:2.6.0-23.el8.s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHBA-2020:2435"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 5.4,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.src",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.s390x",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.src",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.s390x",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.src",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.src",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
            "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.noarch",
            "7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
            "7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-ansible-test-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.s390x",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.s390x",
            "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.x86_64",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.ppc64le",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.s390x",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.src",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.x86_64",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.src",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
            "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
            "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
            "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
            "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
            "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
            "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.ppc64le",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.s390x",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.src",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el8.src",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.ppc64le",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.s390x",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.src",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.ppc64le",
            "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.s390x",
            "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-kuryr-0:4.3.25-202006081518.git.1.240b401.el8.src",
            "8Base-RHOSE-4.3:openshift-kuryr-cni-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:openshift-kuryr-common-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:openshift-kuryr-controller-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:python3-kuryr-kubernetes-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.src",
            "8Base-RHOSE-4.3:s390utils-base-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-base-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-fuse-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-fuse-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpacfstatsd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpacfstatsd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpuplugd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpuplugd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-debugsource-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-devel-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-hmcdrvfs-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-hmcdrvfs-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-iucvterm-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-iucvterm-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-mon_statd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-mon_statd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-osasnmpd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-osasnmpd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-zdsfs-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-zdsfs-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-ziomon-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-ziomon-debuginfo-2:2.6.0-23.el8.s390x"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "jenkins: Content-Security-Policy headers for files uploaded leads to XSS"
    },
    {
      "cve": "CVE-2020-2163",
      "cwe": {
        "id": "CWE-79",
        "name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
      },
      "discovery_date": "2020-03-25T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1819222"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Jenkins 2.227 and earlier, LTS 2.204.5 and earlier improperly processes HTML content of list view column headers, resulting in a stored XSS vulnerability exploitable by users able to control column headers.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "jenkins: improperly processes HTML content of list leads to XSS",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.src",
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.s390x",
          "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.src",
          "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.s390x",
          "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.src",
          "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
          "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.src",
          "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
          "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.noarch",
          "7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.src",
          "7Server-RH7-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el7.src",
          "7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
          "7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.src",
          "7Server-RH7-RHOSE-4.3:openshift-ansible-test-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
          "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.s390x",
          "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.src",
          "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.s390x",
          "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.x86_64",
          "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.ppc64le",
          "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.s390x",
          "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.src",
          "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.x86_64",
          "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
          "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
          "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.src",
          "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
          "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
          "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
          "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
          "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
          "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
          "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
          "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.ppc64le",
          "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.s390x",
          "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.src",
          "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.x86_64",
          "8Base-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el8.src",
          "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.ppc64le",
          "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.s390x",
          "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.src",
          "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
          "8Base-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
          "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.ppc64le",
          "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.s390x",
          "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.x86_64",
          "8Base-RHOSE-4.3:openshift-kuryr-0:4.3.25-202006081518.git.1.240b401.el8.src",
          "8Base-RHOSE-4.3:openshift-kuryr-cni-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
          "8Base-RHOSE-4.3:openshift-kuryr-common-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
          "8Base-RHOSE-4.3:openshift-kuryr-controller-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
          "8Base-RHOSE-4.3:python3-kuryr-kubernetes-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
          "8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.src",
          "8Base-RHOSE-4.3:s390utils-base-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-base-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cmsfs-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cmsfs-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cmsfs-fuse-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cmsfs-fuse-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cpacfstatsd-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cpacfstatsd-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cpuplugd-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cpuplugd-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-debugsource-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-devel-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-hmcdrvfs-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-hmcdrvfs-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-iucvterm-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-iucvterm-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-mon_statd-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-mon_statd-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-osasnmpd-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-osasnmpd-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-zdsfs-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-zdsfs-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-ziomon-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-ziomon-debuginfo-2:2.6.0-23.el8.s390x"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2020-2163"
        },
        {
          "category": "external",
          "summary": "RHBZ#1819222",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1819222"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2020-2163",
          "url": "https://www.cve.org/CVERecord?id=CVE-2020-2163"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2163",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2163"
        },
        {
          "category": "external",
          "summary": "https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1796",
          "url": "https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1796"
        }
      ],
      "release_date": "2020-03-26T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2020-06-17T19:44:05+00:00",
          "details": "For OpenShift Container Platform 4.3 see the following documentation, which\nwill be updated shortly for release 4.3.25, for important instructions on\nhow to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.openshift.com/container-platform/4.3/release_notes/ocp-4-3-release-notes.html\n\nDetails on how to access this content are available at\nhttps://docs.openshift.com/container-platform/4.3/updating/updating-cluster-cli.html.",
          "product_ids": [
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.src",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.s390x",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.src",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.s390x",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.src",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.src",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
            "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.noarch",
            "7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
            "7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-ansible-test-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.s390x",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.s390x",
            "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.x86_64",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.ppc64le",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.s390x",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.src",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.x86_64",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.src",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
            "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
            "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
            "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
            "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
            "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
            "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.ppc64le",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.s390x",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.src",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el8.src",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.ppc64le",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.s390x",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.src",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.ppc64le",
            "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.s390x",
            "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-kuryr-0:4.3.25-202006081518.git.1.240b401.el8.src",
            "8Base-RHOSE-4.3:openshift-kuryr-cni-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:openshift-kuryr-common-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:openshift-kuryr-controller-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:python3-kuryr-kubernetes-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.src",
            "8Base-RHOSE-4.3:s390utils-base-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-base-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-fuse-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-fuse-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpacfstatsd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpacfstatsd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpuplugd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpuplugd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-debugsource-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-devel-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-hmcdrvfs-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-hmcdrvfs-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-iucvterm-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-iucvterm-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-mon_statd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-mon_statd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-osasnmpd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-osasnmpd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-zdsfs-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-zdsfs-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-ziomon-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-ziomon-debuginfo-2:2.6.0-23.el8.s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHBA-2020:2435"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 5.4,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.src",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.s390x",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.src",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.s390x",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.src",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.src",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
            "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.noarch",
            "7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
            "7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-ansible-test-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.s390x",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.s390x",
            "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.x86_64",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.ppc64le",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.s390x",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.src",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.x86_64",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.src",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
            "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
            "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
            "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
            "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
            "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
            "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.ppc64le",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.s390x",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.src",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el8.src",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.ppc64le",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.s390x",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.src",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.ppc64le",
            "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.s390x",
            "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-kuryr-0:4.3.25-202006081518.git.1.240b401.el8.src",
            "8Base-RHOSE-4.3:openshift-kuryr-cni-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:openshift-kuryr-common-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:openshift-kuryr-controller-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:python3-kuryr-kubernetes-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.src",
            "8Base-RHOSE-4.3:s390utils-base-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-base-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-fuse-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-fuse-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpacfstatsd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpacfstatsd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpuplugd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpuplugd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-debugsource-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-devel-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-hmcdrvfs-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-hmcdrvfs-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-iucvterm-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-iucvterm-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-mon_statd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-mon_statd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-osasnmpd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-osasnmpd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-zdsfs-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-zdsfs-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-ziomon-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-ziomon-debuginfo-2:2.6.0-23.el8.s390x"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "jenkins: improperly processes HTML content of list leads to XSS"
    }
  ]
}

RHBA-2020:2444

Vulnerability from csaf_redhat - Published: 2020-06-17 19:38 - Updated: 2025-11-21 17:22

Summary

Red Hat Bug Fix Advisory: OpenShift Container Platform 4.4.8 packages update

Severity

Important

Notes

Topic: Red Hat OpenShift Container Platform release 4.4.8 is now available with updates to packages and images that fix several bugs.

CVE-2020-2160

Jenkins 2.227 and earlier, LTS 2.204.5 and earlier uses different representations of request URL paths, which allows attackers to craft URLs that allow bypassing CSRF protection of any target URL.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-352 - Cross-Site Request Forgery (CSRF)

Affected products

Fixed 38 products

Product	Version	Remediation
Unresolved product id: 7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-svcat-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-ansible-test-0:4.4.0-202006061254.git.1.a996454.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:cri-o-debugsource-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-kuryr-0:4.4.0-202006080017.git.1.855ef1d.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-kuryr-cni-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-kuryr-common-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-kuryr-controller-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:python3-kuryr-kubernetes-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch	—	Vendor Fix fix

Threats

Impact Important

CVE-2020-2161

5.4 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Affected products

Fixed 38 products

Product	Version	Remediation
Unresolved product id: 7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-svcat-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-ansible-test-0:4.4.0-202006061254.git.1.a996454.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:cri-o-debugsource-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-kuryr-0:4.4.0-202006080017.git.1.855ef1d.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-kuryr-cni-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-kuryr-common-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-kuryr-controller-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:python3-kuryr-kubernetes-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2020-2162

Jenkins 2.227 and earlier, LTS 2.204.5 and earlier does not set Content-Security-Policy headers for files uploaded as file parameters to a build, resulting in a stored XSS vulnerability.

5.4 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Affected products

Fixed 38 products

Product	Version	Remediation
Unresolved product id: 7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-svcat-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-ansible-test-0:4.4.0-202006061254.git.1.a996454.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:cri-o-debugsource-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-kuryr-0:4.4.0-202006080017.git.1.855ef1d.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-kuryr-cni-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-kuryr-common-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-kuryr-controller-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:python3-kuryr-kubernetes-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2020-2163

5.4 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Affected products

Fixed 38 products

Product	Version	Remediation
Unresolved product id: 7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-svcat-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-ansible-test-0:4.4.0-202006061254.git.1.a996454.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:cri-o-debugsource-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-kuryr-0:4.4.0-202006080017.git.1.855ef1d.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-kuryr-cni-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-kuryr-common-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-kuryr-controller-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:python3-kuryr-kubernetes-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch	—	Vendor Fix fix

Threats

Impact Moderate

References

23 references

URL	Category
https://access.redhat.com/errata/RHBA-2020:2444	self
https://bugzilla.redhat.com/show_bug.cgi?id=1843489	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2020-2160	self
https://bugzilla.redhat.com/show_bug.cgi?id=1819190	external
https://www.cve.org/CVERecord?id=CVE-2020-2160	external
https://nvd.nist.gov/vuln/detail/CVE-2020-2160	external
https://jenkins.io/security/advisory/2020-03-25/#…	external
https://access.redhat.com/security/cve/CVE-2020-2161	self
https://bugzilla.redhat.com/show_bug.cgi?id=1819198	external
https://www.cve.org/CVERecord?id=CVE-2020-2161	external
https://nvd.nist.gov/vuln/detail/CVE-2020-2161	external
https://jenkins.io/security/advisory/2020-03-25/#…	external
https://access.redhat.com/security/cve/CVE-2020-2162	self
https://bugzilla.redhat.com/show_bug.cgi?id=1819211	external
https://www.cve.org/CVERecord?id=CVE-2020-2162	external
https://nvd.nist.gov/vuln/detail/CVE-2020-2162	external
https://jenkins.io/security/advisory/2020-03-25/#…	external
https://access.redhat.com/security/cve/CVE-2020-2163	self
https://bugzilla.redhat.com/show_bug.cgi?id=1819222	external
https://www.cve.org/CVERecord?id=CVE-2020-2163	external
https://nvd.nist.gov/vuln/detail/CVE-2020-2163	external
https://jenkins.io/security/advisory/2020-03-25/#…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Red Hat OpenShift Container Platform release 4.4.8 is now available with\nupdates to packages and images that fix several bugs.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Red Hat OpenShift Container Platform is Red Hat\u0027s cloud computing\nKubernetes application platform solution designed for on-premise or private\ncloud deployments.\n\nThis advisory contains the RPM packages for Red Hat OpenShift Container\nPlatform 4.4.8. See the following advisory for the container images for\nthis release:\n\nhttps://access.redhat.com/errata/RHBA-2020:2445\n\nAll OpenShift Container Platform 4.4 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift Console or the CLI oc command. Instructions for upgrading a cluster are available at https://docs.openshift.com/container-platform/4.4/updating/updating-cluster-between-minor.html#understanding-upgrade-channels_updating-cluster-between-minor.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHBA-2020:2444",
        "url": "https://access.redhat.com/errata/RHBA-2020:2444"
      },
      {
        "category": "external",
        "summary": "1843489",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1843489"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhba-2020_2444.json"
      }
    ],
    "title": "Red Hat Bug Fix Advisory: OpenShift Container Platform 4.4.8 packages update",
    "tracking": {
      "current_release_date": "2025-11-21T17:22:36+00:00",
      "generator": {
        "date": "2025-11-21T17:22:36+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.6.12"
        }
      },
      "id": "RHBA-2020:2444",
      "initial_release_date": "2020-06-17T19:38:33+00:00",
      "revision_history": [
        {
          "date": "2020-06-17T19:38:33+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2020-06-17T19:38:33+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2025-11-21T17:22:36+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat OpenShift Container Platform 4.4",
                "product": {
                  "name": "Red Hat OpenShift Container Platform 4.4",
                  "product_id": "7Server-RH7-RHOSE-4.4",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:4.4::el7"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat OpenShift Container Platform 4.4",
                "product": {
                  "name": "Red Hat OpenShift Container Platform 4.4",
                  "product_id": "8Base-RHOSE-4.4",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:4.4::el8"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat OpenShift Enterprise"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "jenkins-0:2.222.1.1591351066-1.el7.noarch",
                "product": {
                  "name": "jenkins-0:2.222.1.1591351066-1.el7.noarch",
                  "product_id": "jenkins-0:2.222.1.1591351066-1.el7.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jenkins@2.222.1.1591351066-1.el7?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
                "product": {
                  "name": "openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
                  "product_id": "openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-ansible@4.4.0-202006061254.git.1.a996454.el7?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-ansible-test-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
                "product": {
                  "name": "openshift-ansible-test-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
                  "product_id": "openshift-ansible-test-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-ansible-test@4.4.0-202006061254.git.1.a996454.el7?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-kuryr-cni-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
                "product": {
                  "name": "openshift-kuryr-cni-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
                  "product_id": "openshift-kuryr-cni-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-kuryr-cni@4.4.0-202006080017.git.1.855ef1d.el8?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-kuryr-common-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
                "product": {
                  "name": "openshift-kuryr-common-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
                  "product_id": "openshift-kuryr-common-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-kuryr-common@4.4.0-202006080017.git.1.855ef1d.el8?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-kuryr-controller-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
                "product": {
                  "name": "openshift-kuryr-controller-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
                  "product_id": "openshift-kuryr-controller-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-kuryr-controller@4.4.0-202006080017.git.1.855ef1d.el8?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python3-kuryr-kubernetes-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
                "product": {
                  "name": "python3-kuryr-kubernetes-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
                  "product_id": "python3-kuryr-kubernetes-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-kuryr-kubernetes@4.4.0-202006080017.git.1.855ef1d.el8?arch=noarch"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "jenkins-0:2.222.1.1591351066-1.el7.src",
                "product": {
                  "name": "jenkins-0:2.222.1.1591351066-1.el7.src",
                  "product_id": "jenkins-0:2.222.1.1591351066-1.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jenkins@2.222.1.1591351066-1.el7?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "conmon-2:2.0.17-1.rhaos4.4.el7.src",
                "product": {
                  "name": "conmon-2:2.0.17-1.rhaos4.4.el7.src",
                  "product_id": "conmon-2:2.0.17-1.rhaos4.4.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/conmon@2.0.17-1.rhaos4.4.el7?arch=src\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.src",
                "product": {
                  "name": "cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.src",
                  "product_id": "cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o@1.17.4-14.dev.rhaos4.4.gitb93af5d.el7?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-0:4.4.0-202006061254.git.1.dc84fb4.el7.src",
                "product": {
                  "name": "openshift-0:4.4.0-202006061254.git.1.dc84fb4.el7.src",
                  "product_id": "openshift-0:4.4.0-202006061254.git.1.dc84fb4.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift@4.4.0-202006061254.git.1.dc84fb4.el7?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.src",
                "product": {
                  "name": "openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.src",
                  "product_id": "openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-clients@4.4.0-202006061254.git.1.26cb6dc.el7?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.src",
                "product": {
                  "name": "openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.src",
                  "product_id": "openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-ansible@4.4.0-202006061254.git.1.a996454.el7?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.src",
                "product": {
                  "name": "atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.src",
                  "product_id": "atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-service-idler@4.4.0-202006080017.git.1.7e463c3.el7?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.src",
                "product": {
                  "name": "atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.src",
                  "product_id": "atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-enterprise-service-catalog@4.4.0-202006080017.git.1.77a5cc9.el7?arch=src\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "conmon-2:2.0.17-1.rhaos4.4.el8.src",
                "product": {
                  "name": "conmon-2:2.0.17-1.rhaos4.4.el8.src",
                  "product_id": "conmon-2:2.0.17-1.rhaos4.4.el8.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/conmon@2.0.17-1.rhaos4.4.el8?arch=src\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.src",
                "product": {
                  "name": "cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.src",
                  "product_id": "cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o@1.17.4-14.dev.rhaos4.4.gitb93af5d.el8?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.src",
                "product": {
                  "name": "openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.src",
                  "product_id": "openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-clients@4.4.0-202006061254.git.1.26cb6dc.el8?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-0:4.4.0-202006061254.git.1.dc84fb4.el8.src",
                "product": {
                  "name": "openshift-0:4.4.0-202006061254.git.1.dc84fb4.el8.src",
                  "product_id": "openshift-0:4.4.0-202006061254.git.1.dc84fb4.el8.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift@4.4.0-202006061254.git.1.dc84fb4.el8?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-kuryr-0:4.4.0-202006080017.git.1.855ef1d.el8.src",
                "product": {
                  "name": "openshift-kuryr-0:4.4.0-202006080017.git.1.855ef1d.el8.src",
                  "product_id": "openshift-kuryr-0:4.4.0-202006080017.git.1.855ef1d.el8.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-kuryr@4.4.0-202006080017.git.1.855ef1d.el8?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.src",
                "product": {
                  "name": "machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.src",
                  "product_id": "machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/machine-config-daemon@4.4.0-202006080017.git.1.32e0736.el8?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "conmon-2:2.0.17-1.rhaos4.4.el7.x86_64",
                "product": {
                  "name": "conmon-2:2.0.17-1.rhaos4.4.el7.x86_64",
                  "product_id": "conmon-2:2.0.17-1.rhaos4.4.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/conmon@2.0.17-1.rhaos4.4.el7?arch=x86_64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
                "product": {
                  "name": "cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
                  "product_id": "cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o@1.17.4-14.dev.rhaos4.4.gitb93af5d.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
                "product": {
                  "name": "cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
                  "product_id": "cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debuginfo@1.17.4-14.dev.rhaos4.4.gitb93af5d.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el7.x86_64",
                "product": {
                  "name": "openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el7.x86_64",
                  "product_id": "openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-hyperkube@4.4.0-202006061254.git.1.dc84fb4.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
                "product": {
                  "name": "openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
                  "product_id": "openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-clients@4.4.0-202006061254.git.1.26cb6dc.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
                "product": {
                  "name": "openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
                  "product_id": "openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-clients-redistributable@4.4.0-202006061254.git.1.26cb6dc.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.x86_64",
                "product": {
                  "name": "atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.x86_64",
                  "product_id": "atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-service-idler@4.4.0-202006080017.git.1.7e463c3.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
                "product": {
                  "name": "atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
                  "product_id": "atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-enterprise-service-catalog@4.4.0-202006080017.git.1.77a5cc9.el7?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-enterprise-service-catalog-svcat-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
                "product": {
                  "name": "atomic-enterprise-service-catalog-svcat-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
                  "product_id": "atomic-enterprise-service-catalog-svcat-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-enterprise-service-catalog-svcat@4.4.0-202006080017.git.1.77a5cc9.el7?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "conmon-2:2.0.17-1.rhaos4.4.el8.x86_64",
                "product": {
                  "name": "conmon-2:2.0.17-1.rhaos4.4.el8.x86_64",
                  "product_id": "conmon-2:2.0.17-1.rhaos4.4.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/conmon@2.0.17-1.rhaos4.4.el8?arch=x86_64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
                "product": {
                  "name": "cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
                  "product_id": "cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o@1.17.4-14.dev.rhaos4.4.gitb93af5d.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debugsource-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
                "product": {
                  "name": "cri-o-debugsource-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
                  "product_id": "cri-o-debugsource-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debugsource@1.17.4-14.dev.rhaos4.4.gitb93af5d.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
                "product": {
                  "name": "cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
                  "product_id": "cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debuginfo@1.17.4-14.dev.rhaos4.4.gitb93af5d.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
                "product": {
                  "name": "openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
                  "product_id": "openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-clients@4.4.0-202006061254.git.1.26cb6dc.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
                "product": {
                  "name": "openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
                  "product_id": "openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-clients-redistributable@4.4.0-202006061254.git.1.26cb6dc.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el8.x86_64",
                "product": {
                  "name": "openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el8.x86_64",
                  "product_id": "openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-hyperkube@4.4.0-202006061254.git.1.dc84fb4.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.x86_64",
                "product": {
                  "name": "machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.x86_64",
                  "product_id": "machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/machine-config-daemon@4.4.0-202006080017.git.1.32e0736.el8?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.src as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.src"
        },
        "product_reference": "atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64 as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64"
        },
        "product_reference": "atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-enterprise-service-catalog-svcat-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64 as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-svcat-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64"
        },
        "product_reference": "atomic-enterprise-service-catalog-svcat-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.src as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.src"
        },
        "product_reference": "atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.x86_64 as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.x86_64"
        },
        "product_reference": "atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "conmon-2:2.0.17-1.rhaos4.4.el7.src as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.src"
        },
        "product_reference": "conmon-2:2.0.17-1.rhaos4.4.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "conmon-2:2.0.17-1.rhaos4.4.el7.x86_64 as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.x86_64"
        },
        "product_reference": "conmon-2:2.0.17-1.rhaos4.4.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.src as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.src"
        },
        "product_reference": "cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64 as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64"
        },
        "product_reference": "cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64 as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "7Server-RH7-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64"
        },
        "product_reference": "cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jenkins-0:2.222.1.1591351066-1.el7.noarch as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.noarch"
        },
        "product_reference": "jenkins-0:2.222.1.1591351066-1.el7.noarch",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jenkins-0:2.222.1.1591351066-1.el7.src as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.src"
        },
        "product_reference": "jenkins-0:2.222.1.1591351066-1.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-0:4.4.0-202006061254.git.1.dc84fb4.el7.src as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "7Server-RH7-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el7.src"
        },
        "product_reference": "openshift-0:4.4.0-202006061254.git.1.dc84fb4.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.noarch as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.noarch"
        },
        "product_reference": "openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.src as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.src"
        },
        "product_reference": "openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-ansible-test-0:4.4.0-202006061254.git.1.a996454.el7.noarch as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "7Server-RH7-RHOSE-4.4:openshift-ansible-test-0:4.4.0-202006061254.git.1.a996454.el7.noarch"
        },
        "product_reference": "openshift-ansible-test-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.src as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.src"
        },
        "product_reference": "openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64 as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64"
        },
        "product_reference": "openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64 as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "7Server-RH7-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64"
        },
        "product_reference": "openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el7.x86_64 as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "7Server-RH7-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el7.x86_64"
        },
        "product_reference": "openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "conmon-2:2.0.17-1.rhaos4.4.el8.src as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.src"
        },
        "product_reference": "conmon-2:2.0.17-1.rhaos4.4.el8.src",
        "relates_to_product_reference": "8Base-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "conmon-2:2.0.17-1.rhaos4.4.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.x86_64"
        },
        "product_reference": "conmon-2:2.0.17-1.rhaos4.4.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.src as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.src"
        },
        "product_reference": "cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.src",
        "relates_to_product_reference": "8Base-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64"
        },
        "product_reference": "cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "8Base-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64"
        },
        "product_reference": "cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debugsource-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "8Base-RHOSE-4.4:cri-o-debugsource-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64"
        },
        "product_reference": "cri-o-debugsource-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.src as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.src"
        },
        "product_reference": "machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.src",
        "relates_to_product_reference": "8Base-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.x86_64"
        },
        "product_reference": "machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-0:4.4.0-202006061254.git.1.dc84fb4.el8.src as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "8Base-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el8.src"
        },
        "product_reference": "openshift-0:4.4.0-202006061254.git.1.dc84fb4.el8.src",
        "relates_to_product_reference": "8Base-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.src as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.src"
        },
        "product_reference": "openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.src",
        "relates_to_product_reference": "8Base-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64"
        },
        "product_reference": "openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "8Base-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64"
        },
        "product_reference": "openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "8Base-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el8.x86_64"
        },
        "product_reference": "openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-kuryr-0:4.4.0-202006080017.git.1.855ef1d.el8.src as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "8Base-RHOSE-4.4:openshift-kuryr-0:4.4.0-202006080017.git.1.855ef1d.el8.src"
        },
        "product_reference": "openshift-kuryr-0:4.4.0-202006080017.git.1.855ef1d.el8.src",
        "relates_to_product_reference": "8Base-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-kuryr-cni-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "8Base-RHOSE-4.4:openshift-kuryr-cni-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch"
        },
        "product_reference": "openshift-kuryr-cni-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
        "relates_to_product_reference": "8Base-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-kuryr-common-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "8Base-RHOSE-4.4:openshift-kuryr-common-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch"
        },
        "product_reference": "openshift-kuryr-common-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
        "relates_to_product_reference": "8Base-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-kuryr-controller-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "8Base-RHOSE-4.4:openshift-kuryr-controller-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch"
        },
        "product_reference": "openshift-kuryr-controller-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
        "relates_to_product_reference": "8Base-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-kuryr-kubernetes-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "8Base-RHOSE-4.4:python3-kuryr-kubernetes-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch"
        },
        "product_reference": "python3-kuryr-kubernetes-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
        "relates_to_product_reference": "8Base-RHOSE-4.4"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2020-2160",
      "cwe": {
        "id": "CWE-352",
        "name": "Cross-Site Request Forgery (CSRF)"
      },
      "discovery_date": "2020-03-26T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1819190"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Jenkins 2.227 and earlier, LTS 2.204.5 and earlier uses different representations of request URL paths, which allows attackers to craft URLs that allow bypassing CSRF protection of any target URL.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "jenkins: CSRF protection bypass via crafted URLs",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.src",
          "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-svcat-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.src",
          "7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.src",
          "7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.src",
          "7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.noarch",
          "7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.src",
          "7Server-RH7-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el7.src",
          "7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
          "7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.src",
          "7Server-RH7-RHOSE-4.4:openshift-ansible-test-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
          "7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.src",
          "7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el7.x86_64",
          "8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.src",
          "8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.x86_64",
          "8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.src",
          "8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
          "8Base-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
          "8Base-RHOSE-4.4:cri-o-debugsource-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
          "8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.src",
          "8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.x86_64",
          "8Base-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el8.src",
          "8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.src",
          "8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
          "8Base-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
          "8Base-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el8.x86_64",
          "8Base-RHOSE-4.4:openshift-kuryr-0:4.4.0-202006080017.git.1.855ef1d.el8.src",
          "8Base-RHOSE-4.4:openshift-kuryr-cni-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
          "8Base-RHOSE-4.4:openshift-kuryr-common-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
          "8Base-RHOSE-4.4:openshift-kuryr-controller-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
          "8Base-RHOSE-4.4:python3-kuryr-kubernetes-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2020-2160"
        },
        {
          "category": "external",
          "summary": "RHBZ#1819190",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1819190"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2020-2160",
          "url": "https://www.cve.org/CVERecord?id=CVE-2020-2160"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2160",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2160"
        },
        {
          "category": "external",
          "summary": "https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1774",
          "url": "https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1774"
        }
      ],
      "release_date": "2020-03-25T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2020-06-17T19:38:33+00:00",
          "details": "For OpenShift Container Platform 4.4 see the following documentation, which\nwill be updated shortly for release 4.4.8, for important instructions on\nhow to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.openshift.com/container-platform/4.4/release_notes/ocp-4-4-release-notes.html\n\nDetails on how to access this content are available at\nhttps://docs.openshift.com/container-platform/4.4/updating/updating-cluster-cli.html.",
          "product_ids": [
            "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.src",
            "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-svcat-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.src",
            "7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.src",
            "7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.src",
            "7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.noarch",
            "7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
            "7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-ansible-test-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
            "7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el7.x86_64",
            "8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.src",
            "8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.x86_64",
            "8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.src",
            "8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
            "8Base-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
            "8Base-RHOSE-4.4:cri-o-debugsource-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
            "8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.src",
            "8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el8.src",
            "8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.src",
            "8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-kuryr-0:4.4.0-202006080017.git.1.855ef1d.el8.src",
            "8Base-RHOSE-4.4:openshift-kuryr-cni-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
            "8Base-RHOSE-4.4:openshift-kuryr-common-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
            "8Base-RHOSE-4.4:openshift-kuryr-controller-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
            "8Base-RHOSE-4.4:python3-kuryr-kubernetes-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHBA-2020:2444"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.src",
            "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-svcat-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.src",
            "7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.src",
            "7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.src",
            "7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.noarch",
            "7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
            "7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-ansible-test-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
            "7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el7.x86_64",
            "8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.src",
            "8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.x86_64",
            "8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.src",
            "8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
            "8Base-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
            "8Base-RHOSE-4.4:cri-o-debugsource-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
            "8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.src",
            "8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el8.src",
            "8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.src",
            "8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-kuryr-0:4.4.0-202006080017.git.1.855ef1d.el8.src",
            "8Base-RHOSE-4.4:openshift-kuryr-cni-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
            "8Base-RHOSE-4.4:openshift-kuryr-common-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
            "8Base-RHOSE-4.4:openshift-kuryr-controller-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
            "8Base-RHOSE-4.4:python3-kuryr-kubernetes-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "jenkins: CSRF protection bypass via crafted URLs"
    },
    {
      "cve": "CVE-2020-2161",
      "cwe": {
        "id": "CWE-79",
        "name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
      },
      "discovery_date": "2020-03-26T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1819198"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Jenkins 2.227 and earlier, LTS 2.204.5 and earlier does not properly escape node labels that are shown in the form validation for label expressions on job configuration pages, resulting in a stored XSS vulnerability exploitable by users able to define node labels.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "jenkins: XSS in job configuration pages",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.src",
          "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-svcat-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.src",
          "7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.src",
          "7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.src",
          "7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.noarch",
          "7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.src",
          "7Server-RH7-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el7.src",
          "7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
          "7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.src",
          "7Server-RH7-RHOSE-4.4:openshift-ansible-test-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
          "7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.src",
          "7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el7.x86_64",
          "8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.src",
          "8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.x86_64",
          "8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.src",
          "8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
          "8Base-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
          "8Base-RHOSE-4.4:cri-o-debugsource-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
          "8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.src",
          "8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.x86_64",
          "8Base-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el8.src",
          "8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.src",
          "8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
          "8Base-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
          "8Base-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el8.x86_64",
          "8Base-RHOSE-4.4:openshift-kuryr-0:4.4.0-202006080017.git.1.855ef1d.el8.src",
          "8Base-RHOSE-4.4:openshift-kuryr-cni-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
          "8Base-RHOSE-4.4:openshift-kuryr-common-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
          "8Base-RHOSE-4.4:openshift-kuryr-controller-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
          "8Base-RHOSE-4.4:python3-kuryr-kubernetes-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2020-2161"
        },
        {
          "category": "external",
          "summary": "RHBZ#1819198",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1819198"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2020-2161",
          "url": "https://www.cve.org/CVERecord?id=CVE-2020-2161"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2161",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2161"
        },
        {
          "category": "external",
          "summary": "https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1781",
          "url": "https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1781"
        }
      ],
      "release_date": "2020-03-25T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2020-06-17T19:38:33+00:00",
          "details": "For OpenShift Container Platform 4.4 see the following documentation, which\nwill be updated shortly for release 4.4.8, for important instructions on\nhow to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.openshift.com/container-platform/4.4/release_notes/ocp-4-4-release-notes.html\n\nDetails on how to access this content are available at\nhttps://docs.openshift.com/container-platform/4.4/updating/updating-cluster-cli.html.",
          "product_ids": [
            "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.src",
            "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-svcat-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.src",
            "7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.src",
            "7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.src",
            "7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.noarch",
            "7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
            "7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-ansible-test-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
            "7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el7.x86_64",
            "8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.src",
            "8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.x86_64",
            "8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.src",
            "8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
            "8Base-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
            "8Base-RHOSE-4.4:cri-o-debugsource-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
            "8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.src",
            "8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el8.src",
            "8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.src",
            "8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-kuryr-0:4.4.0-202006080017.git.1.855ef1d.el8.src",
            "8Base-RHOSE-4.4:openshift-kuryr-cni-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
            "8Base-RHOSE-4.4:openshift-kuryr-common-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
            "8Base-RHOSE-4.4:openshift-kuryr-controller-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
            "8Base-RHOSE-4.4:python3-kuryr-kubernetes-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHBA-2020:2444"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 5.4,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.src",
            "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-svcat-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.src",
            "7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.src",
            "7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.src",
            "7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.noarch",
            "7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
            "7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-ansible-test-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
            "7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el7.x86_64",
            "8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.src",
            "8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.x86_64",
            "8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.src",
            "8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
            "8Base-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
            "8Base-RHOSE-4.4:cri-o-debugsource-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
            "8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.src",
            "8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el8.src",
            "8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.src",
            "8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-kuryr-0:4.4.0-202006080017.git.1.855ef1d.el8.src",
            "8Base-RHOSE-4.4:openshift-kuryr-cni-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
            "8Base-RHOSE-4.4:openshift-kuryr-common-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
            "8Base-RHOSE-4.4:openshift-kuryr-controller-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
            "8Base-RHOSE-4.4:python3-kuryr-kubernetes-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "jenkins: XSS in job configuration pages"
    },
    {
      "cve": "CVE-2020-2162",
      "cwe": {
        "id": "CWE-79",
        "name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
      },
      "discovery_date": "2020-03-26T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1819211"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Jenkins 2.227 and earlier, LTS 2.204.5 and earlier does not set Content-Security-Policy headers for files uploaded as file parameters to a build, resulting in a stored XSS vulnerability.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "jenkins: Content-Security-Policy headers for files uploaded leads to XSS",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.src",
          "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-svcat-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.src",
          "7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.src",
          "7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.src",
          "7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.noarch",
          "7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.src",
          "7Server-RH7-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el7.src",
          "7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
          "7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.src",
          "7Server-RH7-RHOSE-4.4:openshift-ansible-test-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
          "7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.src",
          "7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el7.x86_64",
          "8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.src",
          "8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.x86_64",
          "8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.src",
          "8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
          "8Base-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
          "8Base-RHOSE-4.4:cri-o-debugsource-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
          "8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.src",
          "8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.x86_64",
          "8Base-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el8.src",
          "8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.src",
          "8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
          "8Base-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
          "8Base-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el8.x86_64",
          "8Base-RHOSE-4.4:openshift-kuryr-0:4.4.0-202006080017.git.1.855ef1d.el8.src",
          "8Base-RHOSE-4.4:openshift-kuryr-cni-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
          "8Base-RHOSE-4.4:openshift-kuryr-common-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
          "8Base-RHOSE-4.4:openshift-kuryr-controller-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
          "8Base-RHOSE-4.4:python3-kuryr-kubernetes-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2020-2162"
        },
        {
          "category": "external",
          "summary": "RHBZ#1819211",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1819211"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2020-2162",
          "url": "https://www.cve.org/CVERecord?id=CVE-2020-2162"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2162",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2162"
        },
        {
          "category": "external",
          "summary": "https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1793",
          "url": "https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1793"
        }
      ],
      "release_date": "2020-03-25T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2020-06-17T19:38:33+00:00",
          "details": "For OpenShift Container Platform 4.4 see the following documentation, which\nwill be updated shortly for release 4.4.8, for important instructions on\nhow to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.openshift.com/container-platform/4.4/release_notes/ocp-4-4-release-notes.html\n\nDetails on how to access this content are available at\nhttps://docs.openshift.com/container-platform/4.4/updating/updating-cluster-cli.html.",
          "product_ids": [
            "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.src",
            "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-svcat-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.src",
            "7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.src",
            "7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.src",
            "7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.noarch",
            "7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
            "7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-ansible-test-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
            "7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el7.x86_64",
            "8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.src",
            "8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.x86_64",
            "8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.src",
            "8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
            "8Base-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
            "8Base-RHOSE-4.4:cri-o-debugsource-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
            "8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.src",
            "8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el8.src",
            "8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.src",
            "8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-kuryr-0:4.4.0-202006080017.git.1.855ef1d.el8.src",
            "8Base-RHOSE-4.4:openshift-kuryr-cni-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
            "8Base-RHOSE-4.4:openshift-kuryr-common-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
            "8Base-RHOSE-4.4:openshift-kuryr-controller-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
            "8Base-RHOSE-4.4:python3-kuryr-kubernetes-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHBA-2020:2444"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 5.4,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.src",
            "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-svcat-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.src",
            "7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.src",
            "7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.src",
            "7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.noarch",
            "7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
            "7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-ansible-test-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
            "7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el7.x86_64",
            "8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.src",
            "8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.x86_64",
            "8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.src",
            "8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
            "8Base-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
            "8Base-RHOSE-4.4:cri-o-debugsource-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
            "8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.src",
            "8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el8.src",
            "8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.src",
            "8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-kuryr-0:4.4.0-202006080017.git.1.855ef1d.el8.src",
            "8Base-RHOSE-4.4:openshift-kuryr-cni-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
            "8Base-RHOSE-4.4:openshift-kuryr-common-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
            "8Base-RHOSE-4.4:openshift-kuryr-controller-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
            "8Base-RHOSE-4.4:python3-kuryr-kubernetes-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "jenkins: Content-Security-Policy headers for files uploaded leads to XSS"
    },
    {
      "cve": "CVE-2020-2163",
      "cwe": {
        "id": "CWE-79",
        "name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
      },
      "discovery_date": "2020-03-25T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1819222"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Jenkins 2.227 and earlier, LTS 2.204.5 and earlier improperly processes HTML content of list view column headers, resulting in a stored XSS vulnerability exploitable by users able to control column headers.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "jenkins: improperly processes HTML content of list leads to XSS",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.src",
          "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-svcat-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.src",
          "7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.src",
          "7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.src",
          "7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.noarch",
          "7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.src",
          "7Server-RH7-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el7.src",
          "7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
          "7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.src",
          "7Server-RH7-RHOSE-4.4:openshift-ansible-test-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
          "7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.src",
          "7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el7.x86_64",
          "8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.src",
          "8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.x86_64",
          "8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.src",
          "8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
          "8Base-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
          "8Base-RHOSE-4.4:cri-o-debugsource-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
          "8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.src",
          "8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.x86_64",
          "8Base-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el8.src",
          "8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.src",
          "8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
          "8Base-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
          "8Base-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el8.x86_64",
          "8Base-RHOSE-4.4:openshift-kuryr-0:4.4.0-202006080017.git.1.855ef1d.el8.src",
          "8Base-RHOSE-4.4:openshift-kuryr-cni-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
          "8Base-RHOSE-4.4:openshift-kuryr-common-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
          "8Base-RHOSE-4.4:openshift-kuryr-controller-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
          "8Base-RHOSE-4.4:python3-kuryr-kubernetes-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2020-2163"
        },
        {
          "category": "external",
          "summary": "RHBZ#1819222",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1819222"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2020-2163",
          "url": "https://www.cve.org/CVERecord?id=CVE-2020-2163"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2163",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2163"
        },
        {
          "category": "external",
          "summary": "https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1796",
          "url": "https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1796"
        }
      ],
      "release_date": "2020-03-26T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2020-06-17T19:38:33+00:00",
          "details": "For OpenShift Container Platform 4.4 see the following documentation, which\nwill be updated shortly for release 4.4.8, for important instructions on\nhow to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.openshift.com/container-platform/4.4/release_notes/ocp-4-4-release-notes.html\n\nDetails on how to access this content are available at\nhttps://docs.openshift.com/container-platform/4.4/updating/updating-cluster-cli.html.",
          "product_ids": [
            "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.src",
            "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-svcat-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.src",
            "7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.src",
            "7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.src",
            "7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.noarch",
            "7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
            "7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-ansible-test-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
            "7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el7.x86_64",
            "8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.src",
            "8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.x86_64",
            "8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.src",
            "8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
            "8Base-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
            "8Base-RHOSE-4.4:cri-o-debugsource-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
            "8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.src",
            "8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el8.src",
            "8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.src",
            "8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-kuryr-0:4.4.0-202006080017.git.1.855ef1d.el8.src",
            "8Base-RHOSE-4.4:openshift-kuryr-cni-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
            "8Base-RHOSE-4.4:openshift-kuryr-common-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
            "8Base-RHOSE-4.4:openshift-kuryr-controller-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
            "8Base-RHOSE-4.4:python3-kuryr-kubernetes-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHBA-2020:2444"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 5.4,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.src",
            "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-svcat-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.src",
            "7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.src",
            "7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.src",
            "7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.noarch",
            "7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
            "7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-ansible-test-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
            "7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el7.x86_64",
            "8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.src",
            "8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.x86_64",
            "8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.src",
            "8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
            "8Base-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
            "8Base-RHOSE-4.4:cri-o-debugsource-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
            "8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.src",
            "8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el8.src",
            "8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.src",
            "8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-kuryr-0:4.4.0-202006080017.git.1.855ef1d.el8.src",
            "8Base-RHOSE-4.4:openshift-kuryr-cni-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
            "8Base-RHOSE-4.4:openshift-kuryr-common-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
            "8Base-RHOSE-4.4:openshift-kuryr-controller-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
            "8Base-RHOSE-4.4:python3-kuryr-kubernetes-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "jenkins: improperly processes HTML content of list leads to XSS"
    }
  ]
}

RHBA-2020:2477

Vulnerability from csaf_redhat - Published: 2020-06-17 20:23 - Updated: 2025-11-21 17:22

Summary

Red Hat Bug Fix Advisory: OpenShift Container Platform 3.11 bug fix and enhancement update

Severity

Important

Notes

Topic: Red Hat OpenShift Container Platform release 3.11.232 is now available with updates to packages and images that fix several bugs and add enhancements.

Details: Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the RPM packages for Red Hat OpenShift Container Platform 3.11.232. See the following advisory for the container images for this release: https://access.redhat.com/errata/RHBA-2020:2434 This release fixes the following bugs (among others): * Previously, the DeploymentConfig controller broke the adoption mechanism responsible for indentifying replicated controllers. This caused the `oc replace` command to incorrectly modify existing objects based on the specified configuration file unless the `--force` flag was specified. The adoption mechanism has been fixed and the `oc replace` command now correctly removes dependent objects. (BZ#1686838) * An Ingress object specifies backends, where each backend specifies a target port name or number on some Service object. The Service's port, in turn, specifies a target port on a Pod object. Similarly to an Ingress backend, a Route object may specify a target port on a Service. When translating an Ingress backend to a Route, the ingress-to-route controller used the Service port's target port for the Route's target port when it should have used the Service port's name or number. This caused the ingress-to-route controller to sometimes produce an invalid Route object. When translating the target port of an Ingress backend to the target port for a Route, the ingress-to-route controller now uses the Service port's name rather than its target port, or omits the target port entirely if it is not needed, as in the case of a Service that has only one port. Ingress objects are now correctly translated to Route objects even if an Ingress backend targets a Service port that has a different name or number from the Service port's target port. (BZ#1763340) All OpenShift Container Platform 3.11 users are advised to upgrade to these updated packages and images.

CVE-2020-2160

Jenkins 2.227 and earlier, LTS 2.204.5 and earlier uses different representations of request URL paths, which allows attackers to craft URLs that allow bypassing CSRF protection of any target URL.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-352 - Cross-Site Request Forgery (CSRF)

Affected products

Fixed 2 products

Product	Identifier	Version	Remediation
Unresolved product id: 7Server-RH7-RHOSE-3.11:jenkins-0:2.222.1.1591351669-1.el7.noarch		—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-3.11:jenkins-0:2.222.1.1591351669-1.el7.src		—	Vendor Fix fix

Known not affected 89 products

Product	Identifier	Version	Remediation
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-svcat-1:3.11.232-1.git.1.d1e3501.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-svcat-1:3.11.232-1.git.1.d1e3501.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-clients-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-clients-0:3.11.232-1.git.0.a5bc32f.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-clients-redistributable-0:3.11.232-1.git.0.a5bc32f.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-docker-excluder-0:3.11.232-1.git.0.a5bc32f.el7.noarch		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.232-1.git.1.e5150dd.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.232-1.git.1.e5150dd.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-excluder-0:3.11.232-1.git.0.a5bc32f.el7.noarch		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-hyperkube-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-hyperkube-0:3.11.232-1.git.0.a5bc32f.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-hypershift-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-hypershift-0:3.11.232-1.git.0.a5bc32f.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-master-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-master-0:3.11.232-1.git.0.a5bc32f.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-node-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-node-0:3.11.232-1.git.0.a5bc32f.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-pod-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-pod-0:3.11.232-1.git.0.a5bc32f.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-sdn-ovs-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-sdn-ovs-0:3.11.232-1.git.0.a5bc32f.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-template-service-broker-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-template-service-broker-0:3.11.232-1.git.0.a5bc32f.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-tests-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-tests-0:3.11.232-1.git.0.a5bc32f.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:cri-tools-debuginfo-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:cri-tools-debuginfo-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:golang-github-cpuguy83-go-md2man-0:1.0.7-1.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:golang-github-cpuguy83-go-md2man-0:1.0.7-1.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:golang-github-prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:golang-github-prometheus-node_exporter-0:3.11.232-1.git.1.0216923.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:golang-github-prometheus-prometheus-0:3.11.232-1.git.1.3c936ee.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:jenkins-2-plugins-0:3.11.1591354111-1.el7.noarch		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:jenkins-2-plugins-0:3.11.1591354111-1.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-ansible-0:3.11.232-1.git.0.f0f2213.el7.noarch		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-ansible-0:3.11.232-1.git.0.f0f2213.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-ansible-docs-0:3.11.232-1.git.0.f0f2213.el7.noarch		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-ansible-playbooks-0:3.11.232-1.git.0.f0f2213.el7.noarch		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-ansible-roles-0:3.11.232-1.git.0.f0f2213.el7.noarch		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-ansible-test-0:3.11.232-1.git.0.f0f2213.el7.noarch		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-kuryr-0:3.11.232-1.git.1.d2cedd4.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-kuryr-cni-0:3.11.232-1.git.1.d2cedd4.el7.noarch		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-kuryr-common-0:3.11.232-1.git.1.d2cedd4.el7.noarch		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-kuryr-controller-0:3.11.232-1.git.1.d2cedd4.el7.noarch		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:prometheus-0:3.11.232-1.git.1.3c936ee.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:prometheus-0:3.11.232-1.git.1.3c936ee.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:prometheus-node-exporter-0:3.11.232-1.git.1.0216923.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:prometheus-node-exporter-0:3.11.232-1.git.1.0216923.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:python-openshift-1:0.6.4-2.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:python2-kuryr-kubernetes-0:3.11.232-1.git.1.d2cedd4.el7.noarch		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:python2-openshift-1:0.6.4-2.el7.noarch		—

Threats

Impact Important

CVE-2020-2161

5.4 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Affected products

Fixed 2 products

Product	Identifier	Version	Remediation
Unresolved product id: 7Server-RH7-RHOSE-3.11:jenkins-0:2.222.1.1591351669-1.el7.noarch		—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-3.11:jenkins-0:2.222.1.1591351669-1.el7.src		—	Vendor Fix fix

Known not affected 89 products

Product	Identifier	Version	Remediation
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-svcat-1:3.11.232-1.git.1.d1e3501.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-svcat-1:3.11.232-1.git.1.d1e3501.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-clients-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-clients-0:3.11.232-1.git.0.a5bc32f.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-clients-redistributable-0:3.11.232-1.git.0.a5bc32f.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-docker-excluder-0:3.11.232-1.git.0.a5bc32f.el7.noarch		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.232-1.git.1.e5150dd.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.232-1.git.1.e5150dd.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-excluder-0:3.11.232-1.git.0.a5bc32f.el7.noarch		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-hyperkube-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-hyperkube-0:3.11.232-1.git.0.a5bc32f.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-hypershift-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-hypershift-0:3.11.232-1.git.0.a5bc32f.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-master-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-master-0:3.11.232-1.git.0.a5bc32f.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-node-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-node-0:3.11.232-1.git.0.a5bc32f.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-pod-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-pod-0:3.11.232-1.git.0.a5bc32f.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-sdn-ovs-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-sdn-ovs-0:3.11.232-1.git.0.a5bc32f.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-template-service-broker-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-template-service-broker-0:3.11.232-1.git.0.a5bc32f.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-tests-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-tests-0:3.11.232-1.git.0.a5bc32f.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:cri-tools-debuginfo-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:cri-tools-debuginfo-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:golang-github-cpuguy83-go-md2man-0:1.0.7-1.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:golang-github-cpuguy83-go-md2man-0:1.0.7-1.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:golang-github-prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:golang-github-prometheus-node_exporter-0:3.11.232-1.git.1.0216923.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:golang-github-prometheus-prometheus-0:3.11.232-1.git.1.3c936ee.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:jenkins-2-plugins-0:3.11.1591354111-1.el7.noarch		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:jenkins-2-plugins-0:3.11.1591354111-1.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-ansible-0:3.11.232-1.git.0.f0f2213.el7.noarch		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-ansible-0:3.11.232-1.git.0.f0f2213.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-ansible-docs-0:3.11.232-1.git.0.f0f2213.el7.noarch		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-ansible-playbooks-0:3.11.232-1.git.0.f0f2213.el7.noarch		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-ansible-roles-0:3.11.232-1.git.0.f0f2213.el7.noarch		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-ansible-test-0:3.11.232-1.git.0.f0f2213.el7.noarch		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-kuryr-0:3.11.232-1.git.1.d2cedd4.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-kuryr-cni-0:3.11.232-1.git.1.d2cedd4.el7.noarch		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-kuryr-common-0:3.11.232-1.git.1.d2cedd4.el7.noarch		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-kuryr-controller-0:3.11.232-1.git.1.d2cedd4.el7.noarch		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:prometheus-0:3.11.232-1.git.1.3c936ee.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:prometheus-0:3.11.232-1.git.1.3c936ee.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:prometheus-node-exporter-0:3.11.232-1.git.1.0216923.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:prometheus-node-exporter-0:3.11.232-1.git.1.0216923.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:python-openshift-1:0.6.4-2.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:python2-kuryr-kubernetes-0:3.11.232-1.git.1.d2cedd4.el7.noarch		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:python2-openshift-1:0.6.4-2.el7.noarch		—

Threats

Impact Moderate

CVE-2020-2162

Jenkins 2.227 and earlier, LTS 2.204.5 and earlier does not set Content-Security-Policy headers for files uploaded as file parameters to a build, resulting in a stored XSS vulnerability.

5.4 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Affected products

Fixed 2 products

Product	Identifier	Version	Remediation
Unresolved product id: 7Server-RH7-RHOSE-3.11:jenkins-0:2.222.1.1591351669-1.el7.noarch		—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-3.11:jenkins-0:2.222.1.1591351669-1.el7.src		—	Vendor Fix fix

Known not affected 89 products

Product	Identifier	Version	Remediation
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-svcat-1:3.11.232-1.git.1.d1e3501.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-svcat-1:3.11.232-1.git.1.d1e3501.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-clients-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-clients-0:3.11.232-1.git.0.a5bc32f.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-clients-redistributable-0:3.11.232-1.git.0.a5bc32f.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-docker-excluder-0:3.11.232-1.git.0.a5bc32f.el7.noarch		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.232-1.git.1.e5150dd.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.232-1.git.1.e5150dd.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-excluder-0:3.11.232-1.git.0.a5bc32f.el7.noarch		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-hyperkube-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-hyperkube-0:3.11.232-1.git.0.a5bc32f.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-hypershift-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-hypershift-0:3.11.232-1.git.0.a5bc32f.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-master-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-master-0:3.11.232-1.git.0.a5bc32f.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-node-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-node-0:3.11.232-1.git.0.a5bc32f.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-pod-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-pod-0:3.11.232-1.git.0.a5bc32f.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-sdn-ovs-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-sdn-ovs-0:3.11.232-1.git.0.a5bc32f.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-template-service-broker-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-template-service-broker-0:3.11.232-1.git.0.a5bc32f.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-tests-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-tests-0:3.11.232-1.git.0.a5bc32f.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:cri-tools-debuginfo-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:cri-tools-debuginfo-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:golang-github-cpuguy83-go-md2man-0:1.0.7-1.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:golang-github-cpuguy83-go-md2man-0:1.0.7-1.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:golang-github-prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:golang-github-prometheus-node_exporter-0:3.11.232-1.git.1.0216923.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:golang-github-prometheus-prometheus-0:3.11.232-1.git.1.3c936ee.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:jenkins-2-plugins-0:3.11.1591354111-1.el7.noarch		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:jenkins-2-plugins-0:3.11.1591354111-1.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-ansible-0:3.11.232-1.git.0.f0f2213.el7.noarch		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-ansible-0:3.11.232-1.git.0.f0f2213.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-ansible-docs-0:3.11.232-1.git.0.f0f2213.el7.noarch		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-ansible-playbooks-0:3.11.232-1.git.0.f0f2213.el7.noarch		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-ansible-roles-0:3.11.232-1.git.0.f0f2213.el7.noarch		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-ansible-test-0:3.11.232-1.git.0.f0f2213.el7.noarch		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-kuryr-0:3.11.232-1.git.1.d2cedd4.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-kuryr-cni-0:3.11.232-1.git.1.d2cedd4.el7.noarch		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-kuryr-common-0:3.11.232-1.git.1.d2cedd4.el7.noarch		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-kuryr-controller-0:3.11.232-1.git.1.d2cedd4.el7.noarch		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:prometheus-0:3.11.232-1.git.1.3c936ee.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:prometheus-0:3.11.232-1.git.1.3c936ee.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:prometheus-node-exporter-0:3.11.232-1.git.1.0216923.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:prometheus-node-exporter-0:3.11.232-1.git.1.0216923.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:python-openshift-1:0.6.4-2.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:python2-kuryr-kubernetes-0:3.11.232-1.git.1.d2cedd4.el7.noarch		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:python2-openshift-1:0.6.4-2.el7.noarch		—

Threats

Impact Moderate

CVE-2020-2163

5.4 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Affected products

Fixed 2 products

Product	Identifier	Version	Remediation
Unresolved product id: 7Server-RH7-RHOSE-3.11:jenkins-0:2.222.1.1591351669-1.el7.noarch		—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-3.11:jenkins-0:2.222.1.1591351669-1.el7.src		—	Vendor Fix fix

Known not affected 89 products

Product	Identifier	Version	Remediation
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-svcat-1:3.11.232-1.git.1.d1e3501.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-svcat-1:3.11.232-1.git.1.d1e3501.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-clients-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-clients-0:3.11.232-1.git.0.a5bc32f.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-clients-redistributable-0:3.11.232-1.git.0.a5bc32f.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-docker-excluder-0:3.11.232-1.git.0.a5bc32f.el7.noarch		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.232-1.git.1.e5150dd.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.232-1.git.1.e5150dd.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-excluder-0:3.11.232-1.git.0.a5bc32f.el7.noarch		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-hyperkube-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-hyperkube-0:3.11.232-1.git.0.a5bc32f.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-hypershift-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-hypershift-0:3.11.232-1.git.0.a5bc32f.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-master-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-master-0:3.11.232-1.git.0.a5bc32f.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-node-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-node-0:3.11.232-1.git.0.a5bc32f.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-pod-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-pod-0:3.11.232-1.git.0.a5bc32f.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-sdn-ovs-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-sdn-ovs-0:3.11.232-1.git.0.a5bc32f.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-template-service-broker-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-template-service-broker-0:3.11.232-1.git.0.a5bc32f.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-tests-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-tests-0:3.11.232-1.git.0.a5bc32f.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:cri-tools-debuginfo-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:cri-tools-debuginfo-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:golang-github-cpuguy83-go-md2man-0:1.0.7-1.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:golang-github-cpuguy83-go-md2man-0:1.0.7-1.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:golang-github-prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:golang-github-prometheus-node_exporter-0:3.11.232-1.git.1.0216923.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:golang-github-prometheus-prometheus-0:3.11.232-1.git.1.3c936ee.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:jenkins-2-plugins-0:3.11.1591354111-1.el7.noarch		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:jenkins-2-plugins-0:3.11.1591354111-1.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-ansible-0:3.11.232-1.git.0.f0f2213.el7.noarch		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-ansible-0:3.11.232-1.git.0.f0f2213.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-ansible-docs-0:3.11.232-1.git.0.f0f2213.el7.noarch		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-ansible-playbooks-0:3.11.232-1.git.0.f0f2213.el7.noarch		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-ansible-roles-0:3.11.232-1.git.0.f0f2213.el7.noarch		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-ansible-test-0:3.11.232-1.git.0.f0f2213.el7.noarch		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-kuryr-0:3.11.232-1.git.1.d2cedd4.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-kuryr-cni-0:3.11.232-1.git.1.d2cedd4.el7.noarch		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-kuryr-common-0:3.11.232-1.git.1.d2cedd4.el7.noarch		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-kuryr-controller-0:3.11.232-1.git.1.d2cedd4.el7.noarch		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:prometheus-0:3.11.232-1.git.1.3c936ee.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:prometheus-0:3.11.232-1.git.1.3c936ee.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:prometheus-node-exporter-0:3.11.232-1.git.1.0216923.el7.ppc64le		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:prometheus-node-exporter-0:3.11.232-1.git.1.0216923.el7.x86_64		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:python-openshift-1:0.6.4-2.el7.src		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:python2-kuryr-kubernetes-0:3.11.232-1.git.1.d2cedd4.el7.noarch		—
Unresolved product id: 7Server-RH7-RHOSE-3.11:python2-openshift-1:0.6.4-2.el7.noarch		—

Threats

Impact Moderate

References

38 references

URL	Category
https://access.redhat.com/errata/RHBA-2020:2477	self
https://bugzilla.redhat.com/show_bug.cgi?id=1616184	external
https://bugzilla.redhat.com/show_bug.cgi?id=1663306	external
https://bugzilla.redhat.com/show_bug.cgi?id=1686838	external
https://bugzilla.redhat.com/show_bug.cgi?id=1693798	external
https://bugzilla.redhat.com/show_bug.cgi?id=1731236	external
https://bugzilla.redhat.com/show_bug.cgi?id=1763340	external
https://bugzilla.redhat.com/show_bug.cgi?id=1797880	external
https://bugzilla.redhat.com/show_bug.cgi?id=1800489	external
https://bugzilla.redhat.com/show_bug.cgi?id=1805192	external
https://bugzilla.redhat.com/show_bug.cgi?id=1806454	external
https://bugzilla.redhat.com/show_bug.cgi?id=1812036	external
https://bugzilla.redhat.com/show_bug.cgi?id=1814451	external
https://bugzilla.redhat.com/show_bug.cgi?id=1816966	external
https://bugzilla.redhat.com/show_bug.cgi?id=1828433	external
https://bugzilla.redhat.com/show_bug.cgi?id=1843039	external
https://bugzilla.redhat.com/show_bug.cgi?id=1845517	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2020-2160	self
https://bugzilla.redhat.com/show_bug.cgi?id=1819190	external
https://www.cve.org/CVERecord?id=CVE-2020-2160	external
https://nvd.nist.gov/vuln/detail/CVE-2020-2160	external
https://jenkins.io/security/advisory/2020-03-25/#…	external
https://access.redhat.com/security/cve/CVE-2020-2161	self
https://bugzilla.redhat.com/show_bug.cgi?id=1819198	external
https://www.cve.org/CVERecord?id=CVE-2020-2161	external
https://nvd.nist.gov/vuln/detail/CVE-2020-2161	external
https://jenkins.io/security/advisory/2020-03-25/#…	external
https://access.redhat.com/security/cve/CVE-2020-2162	self
https://bugzilla.redhat.com/show_bug.cgi?id=1819211	external
https://www.cve.org/CVERecord?id=CVE-2020-2162	external
https://nvd.nist.gov/vuln/detail/CVE-2020-2162	external
https://jenkins.io/security/advisory/2020-03-25/#…	external
https://access.redhat.com/security/cve/CVE-2020-2163	self
https://bugzilla.redhat.com/show_bug.cgi?id=1819222	external
https://www.cve.org/CVERecord?id=CVE-2020-2163	external
https://nvd.nist.gov/vuln/detail/CVE-2020-2163	external
https://jenkins.io/security/advisory/2020-03-25/#…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Red Hat OpenShift Container Platform release 3.11.232 is now available with\nupdates to packages and images that fix several bugs and add enhancements.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Red Hat OpenShift Container Platform is Red Hat\u0027s cloud computing\nKubernetes application platform solution designed for on-premise or private\ncloud deployments.\n\nThis advisory contains the RPM packages for Red Hat OpenShift Container\nPlatform 3.11.232. See the following advisory for the container images for\nthis release:\n\nhttps://access.redhat.com/errata/RHBA-2020:2434\n\nThis release fixes the following bugs (among others):\n\n* Previously, the DeploymentConfig controller broke the adoption mechanism responsible for indentifying replicated controllers. This caused the `oc replace` command to incorrectly modify existing objects based on the specified configuration file unless the `--force` flag was specified. The adoption mechanism has been fixed and the `oc replace` command now correctly removes dependent objects. (BZ#1686838)\n\n* An Ingress object specifies backends, where each backend specifies a target port name or number on some Service object. The Service\u0027s port, in turn, specifies a target port on a Pod object. Similarly to an Ingress backend, a Route object may specify a target port on a Service. When translating an Ingress backend to a Route, the ingress-to-route controller used the Service port\u0027s target port for the Route\u0027s target port when it should have used the Service port\u0027s name or number. This caused the ingress-to-route controller to sometimes produce an invalid Route object. When translating the target port of an Ingress backend to the target port for a Route, the ingress-to-route controller now uses the Service port\u0027s name rather than its target port, or omits the target port entirely if it is not needed, as in the case of a Service that has only one port. Ingress objects are now correctly translated to Route objects even if an Ingress backend targets a Service port that has a different name or number from the Service port\u0027s target port. (BZ#1763340)\n\nAll OpenShift Container Platform 3.11 users are advised to upgrade to these\nupdated packages and images.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHBA-2020:2477",
        "url": "https://access.redhat.com/errata/RHBA-2020:2477"
      },
      {
        "category": "external",
        "summary": "1616184",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1616184"
      },
      {
        "category": "external",
        "summary": "1663306",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1663306"
      },
      {
        "category": "external",
        "summary": "1686838",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1686838"
      },
      {
        "category": "external",
        "summary": "1693798",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1693798"
      },
      {
        "category": "external",
        "summary": "1731236",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1731236"
      },
      {
        "category": "external",
        "summary": "1763340",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1763340"
      },
      {
        "category": "external",
        "summary": "1797880",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1797880"
      },
      {
        "category": "external",
        "summary": "1800489",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1800489"
      },
      {
        "category": "external",
        "summary": "1805192",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1805192"
      },
      {
        "category": "external",
        "summary": "1806454",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1806454"
      },
      {
        "category": "external",
        "summary": "1812036",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1812036"
      },
      {
        "category": "external",
        "summary": "1814451",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1814451"
      },
      {
        "category": "external",
        "summary": "1816966",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1816966"
      },
      {
        "category": "external",
        "summary": "1828433",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1828433"
      },
      {
        "category": "external",
        "summary": "1843039",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1843039"
      },
      {
        "category": "external",
        "summary": "1845517",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1845517"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhba-2020_2477.json"
      }
    ],
    "title": "Red Hat Bug Fix Advisory: OpenShift Container Platform 3.11 bug fix and enhancement update",
    "tracking": {
      "current_release_date": "2025-11-21T17:22:36+00:00",
      "generator": {
        "date": "2025-11-21T17:22:36+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.6.12"
        }
      },
      "id": "RHBA-2020:2477",
      "initial_release_date": "2020-06-17T20:23:07+00:00",
      "revision_history": [
        {
          "date": "2020-06-17T20:23:07+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2020-06-17T20:23:07+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2025-11-21T17:22:36+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat OpenShift Container Platform 3.11",
                "product": {
                  "name": "Red Hat OpenShift Container Platform 3.11",
                  "product_id": "7Server-RH7-RHOSE-3.11",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:3.11::el7"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat OpenShift Enterprise"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.ppc64le",
                "product": {
                  "name": "atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.ppc64le",
                  "product_id": "atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-cluster-autoscaler@3.11.232-1.git.1.e7433c6.el7?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.ppc64le",
                "product": {
                  "name": "atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.ppc64le",
                  "product_id": "atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-descheduler@3.11.232-1.git.1.71361e4.el7?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.ppc64le",
                "product": {
                  "name": "atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.ppc64le",
                  "product_id": "atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-enterprise-service-catalog@3.11.232-1.git.1.d1e3501.el7?arch=ppc64le\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-enterprise-service-catalog-svcat-1:3.11.232-1.git.1.d1e3501.el7.ppc64le",
                "product": {
                  "name": "atomic-enterprise-service-catalog-svcat-1:3.11.232-1.git.1.d1e3501.el7.ppc64le",
                  "product_id": "atomic-enterprise-service-catalog-svcat-1:3.11.232-1.git.1.d1e3501.el7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-enterprise-service-catalog-svcat@3.11.232-1.git.1.d1e3501.el7?arch=ppc64le\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.ppc64le",
                "product": {
                  "name": "golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.ppc64le",
                  "product_id": "golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/golang-github-openshift-oauth-proxy@3.11.232-1.git.1.db200ae.el7?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "prometheus-0:3.11.232-1.git.1.3c936ee.el7.ppc64le",
                "product": {
                  "name": "prometheus-0:3.11.232-1.git.1.3c936ee.el7.ppc64le",
                  "product_id": "prometheus-0:3.11.232-1.git.1.3c936ee.el7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/prometheus@3.11.232-1.git.1.3c936ee.el7?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "prometheus-node-exporter-0:3.11.232-1.git.1.0216923.el7.ppc64le",
                "product": {
                  "name": "prometheus-node-exporter-0:3.11.232-1.git.1.0216923.el7.ppc64le",
                  "product_id": "prometheus-node-exporter-0:3.11.232-1.git.1.0216923.el7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/prometheus-node-exporter@3.11.232-1.git.1.0216923.el7?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.ppc64le",
                "product": {
                  "name": "atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.ppc64le",
                  "product_id": "atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-node-problem-detector@3.11.232-1.git.1.d41afaf.el7?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.ppc64le",
                "product": {
                  "name": "openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.ppc64le",
                  "product_id": "openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-enterprise-autoheal@3.11.232-1.git.1.2756a13.el7?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.ppc64le",
                "product": {
                  "name": "openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.ppc64le",
                  "product_id": "openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-enterprise-cluster-capacity@3.11.232-1.git.1.2e0c082.el7?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.ppc64le",
                "product": {
                  "name": "atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.ppc64le",
                  "product_id": "atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-web-console@3.11.232-1.git.1.0f92c9e.el7?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.ppc64le",
                "product": {
                  "name": "atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.ppc64le",
                  "product_id": "atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-service-idler@3.11.232-1.git.1.424e270.el7?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.ppc64le",
                "product": {
                  "name": "atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.ppc64le",
                  "product_id": "atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-metrics-server@3.11.232-1.git.1.8c5f5b4.el7?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.ppc64le",
                "product": {
                  "name": "prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.ppc64le",
                  "product_id": "prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/prometheus-alertmanager@3.11.232-1.git.1.abfb991.el7?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
                "product": {
                  "name": "atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
                  "product_id": "atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift@3.11.232-1.git.0.a5bc32f.el7?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-clients-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
                "product": {
                  "name": "atomic-openshift-clients-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
                  "product_id": "atomic-openshift-clients-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-clients@3.11.232-1.git.0.a5bc32f.el7?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-hyperkube-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
                "product": {
                  "name": "atomic-openshift-hyperkube-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
                  "product_id": "atomic-openshift-hyperkube-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-hyperkube@3.11.232-1.git.0.a5bc32f.el7?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-hypershift-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
                "product": {
                  "name": "atomic-openshift-hypershift-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
                  "product_id": "atomic-openshift-hypershift-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-hypershift@3.11.232-1.git.0.a5bc32f.el7?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-master-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
                "product": {
                  "name": "atomic-openshift-master-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
                  "product_id": "atomic-openshift-master-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-master@3.11.232-1.git.0.a5bc32f.el7?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-node-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
                "product": {
                  "name": "atomic-openshift-node-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
                  "product_id": "atomic-openshift-node-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-node@3.11.232-1.git.0.a5bc32f.el7?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-pod-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
                "product": {
                  "name": "atomic-openshift-pod-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
                  "product_id": "atomic-openshift-pod-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-pod@3.11.232-1.git.0.a5bc32f.el7?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-sdn-ovs-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
                "product": {
                  "name": "atomic-openshift-sdn-ovs-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
                  "product_id": "atomic-openshift-sdn-ovs-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-sdn-ovs@3.11.232-1.git.0.a5bc32f.el7?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-template-service-broker-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
                "product": {
                  "name": "atomic-openshift-template-service-broker-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
                  "product_id": "atomic-openshift-template-service-broker-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-template-service-broker@3.11.232-1.git.0.a5bc32f.el7?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-tests-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
                "product": {
                  "name": "atomic-openshift-tests-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
                  "product_id": "atomic-openshift-tests-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-tests@3.11.232-1.git.0.a5bc32f.el7?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.ppc64le",
                "product": {
                  "name": "cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.ppc64le",
                  "product_id": "cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-tools@1.11.1-3.rhaos3.11.gitedabfb5.el7?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-tools-debuginfo-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.ppc64le",
                "product": {
                  "name": "cri-tools-debuginfo-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.ppc64le",
                  "product_id": "cri-tools-debuginfo-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-tools-debuginfo@1.11.1-3.rhaos3.11.gitedabfb5.el7?arch=ppc64le"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.x86_64",
                "product": {
                  "name": "atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.x86_64",
                  "product_id": "atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-cluster-autoscaler@3.11.232-1.git.1.e7433c6.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.x86_64",
                "product": {
                  "name": "atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.x86_64",
                  "product_id": "atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-descheduler@3.11.232-1.git.1.71361e4.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.x86_64",
                "product": {
                  "name": "atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.x86_64",
                  "product_id": "atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-enterprise-service-catalog@3.11.232-1.git.1.d1e3501.el7?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-enterprise-service-catalog-svcat-1:3.11.232-1.git.1.d1e3501.el7.x86_64",
                "product": {
                  "name": "atomic-enterprise-service-catalog-svcat-1:3.11.232-1.git.1.d1e3501.el7.x86_64",
                  "product_id": "atomic-enterprise-service-catalog-svcat-1:3.11.232-1.git.1.d1e3501.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-enterprise-service-catalog-svcat@3.11.232-1.git.1.d1e3501.el7?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.x86_64",
                "product": {
                  "name": "golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.x86_64",
                  "product_id": "golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/golang-github-openshift-oauth-proxy@3.11.232-1.git.1.db200ae.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "prometheus-0:3.11.232-1.git.1.3c936ee.el7.x86_64",
                "product": {
                  "name": "prometheus-0:3.11.232-1.git.1.3c936ee.el7.x86_64",
                  "product_id": "prometheus-0:3.11.232-1.git.1.3c936ee.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/prometheus@3.11.232-1.git.1.3c936ee.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-dockerregistry-0:3.11.232-1.git.1.e5150dd.el7.x86_64",
                "product": {
                  "name": "atomic-openshift-dockerregistry-0:3.11.232-1.git.1.e5150dd.el7.x86_64",
                  "product_id": "atomic-openshift-dockerregistry-0:3.11.232-1.git.1.e5150dd.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-dockerregistry@3.11.232-1.git.1.e5150dd.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "prometheus-node-exporter-0:3.11.232-1.git.1.0216923.el7.x86_64",
                "product": {
                  "name": "prometheus-node-exporter-0:3.11.232-1.git.1.0216923.el7.x86_64",
                  "product_id": "prometheus-node-exporter-0:3.11.232-1.git.1.0216923.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/prometheus-node-exporter@3.11.232-1.git.1.0216923.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.x86_64",
                "product": {
                  "name": "atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.x86_64",
                  "product_id": "atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-node-problem-detector@3.11.232-1.git.1.d41afaf.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.x86_64",
                "product": {
                  "name": "openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.x86_64",
                  "product_id": "openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-enterprise-autoheal@3.11.232-1.git.1.2756a13.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.x86_64",
                "product": {
                  "name": "openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.x86_64",
                  "product_id": "openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-enterprise-cluster-capacity@3.11.232-1.git.1.2e0c082.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.x86_64",
                "product": {
                  "name": "atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.x86_64",
                  "product_id": "atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-web-console@3.11.232-1.git.1.0f92c9e.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.x86_64",
                "product": {
                  "name": "atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.x86_64",
                  "product_id": "atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-service-idler@3.11.232-1.git.1.424e270.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.x86_64",
                "product": {
                  "name": "atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.x86_64",
                  "product_id": "atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-metrics-server@3.11.232-1.git.1.8c5f5b4.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.x86_64",
                "product": {
                  "name": "prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.x86_64",
                  "product_id": "prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/prometheus-alertmanager@3.11.232-1.git.1.abfb991.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
                "product": {
                  "name": "atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
                  "product_id": "atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift@3.11.232-1.git.0.a5bc32f.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-clients-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
                "product": {
                  "name": "atomic-openshift-clients-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
                  "product_id": "atomic-openshift-clients-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-clients@3.11.232-1.git.0.a5bc32f.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-clients-redistributable-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
                "product": {
                  "name": "atomic-openshift-clients-redistributable-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
                  "product_id": "atomic-openshift-clients-redistributable-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-clients-redistributable@3.11.232-1.git.0.a5bc32f.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-hyperkube-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
                "product": {
                  "name": "atomic-openshift-hyperkube-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
                  "product_id": "atomic-openshift-hyperkube-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-hyperkube@3.11.232-1.git.0.a5bc32f.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-hypershift-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
                "product": {
                  "name": "atomic-openshift-hypershift-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
                  "product_id": "atomic-openshift-hypershift-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-hypershift@3.11.232-1.git.0.a5bc32f.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-master-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
                "product": {
                  "name": "atomic-openshift-master-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
                  "product_id": "atomic-openshift-master-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-master@3.11.232-1.git.0.a5bc32f.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-node-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
                "product": {
                  "name": "atomic-openshift-node-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
                  "product_id": "atomic-openshift-node-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-node@3.11.232-1.git.0.a5bc32f.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-pod-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
                "product": {
                  "name": "atomic-openshift-pod-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
                  "product_id": "atomic-openshift-pod-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-pod@3.11.232-1.git.0.a5bc32f.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-sdn-ovs-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
                "product": {
                  "name": "atomic-openshift-sdn-ovs-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
                  "product_id": "atomic-openshift-sdn-ovs-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-sdn-ovs@3.11.232-1.git.0.a5bc32f.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-template-service-broker-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
                "product": {
                  "name": "atomic-openshift-template-service-broker-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
                  "product_id": "atomic-openshift-template-service-broker-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-template-service-broker@3.11.232-1.git.0.a5bc32f.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-tests-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
                "product": {
                  "name": "atomic-openshift-tests-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
                  "product_id": "atomic-openshift-tests-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-tests@3.11.232-1.git.0.a5bc32f.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.x86_64",
                "product": {
                  "name": "cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.x86_64",
                  "product_id": "cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-tools@1.11.1-3.rhaos3.11.gitedabfb5.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-tools-debuginfo-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.x86_64",
                "product": {
                  "name": "cri-tools-debuginfo-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.x86_64",
                  "product_id": "cri-tools-debuginfo-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-tools-debuginfo@1.11.1-3.rhaos3.11.gitedabfb5.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "golang-github-cpuguy83-go-md2man-0:1.0.7-1.el7.x86_64",
                "product": {
                  "name": "golang-github-cpuguy83-go-md2man-0:1.0.7-1.el7.x86_64",
                  "product_id": "golang-github-cpuguy83-go-md2man-0:1.0.7-1.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/golang-github-cpuguy83-go-md2man@1.0.7-1.el7?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.src",
                "product": {
                  "name": "atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.src",
                  "product_id": "atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-cluster-autoscaler@3.11.232-1.git.1.e7433c6.el7?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.src",
                "product": {
                  "name": "atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.src",
                  "product_id": "atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-descheduler@3.11.232-1.git.1.71361e4.el7?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.src",
                "product": {
                  "name": "atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.src",
                  "product_id": "atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-enterprise-service-catalog@3.11.232-1.git.1.d1e3501.el7?arch=src\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.src",
                "product": {
                  "name": "golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.src",
                  "product_id": "golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/golang-github-openshift-oauth-proxy@3.11.232-1.git.1.db200ae.el7?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "golang-github-prometheus-prometheus-0:3.11.232-1.git.1.3c936ee.el7.src",
                "product": {
                  "name": "golang-github-prometheus-prometheus-0:3.11.232-1.git.1.3c936ee.el7.src",
                  "product_id": "golang-github-prometheus-prometheus-0:3.11.232-1.git.1.3c936ee.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/golang-github-prometheus-prometheus@3.11.232-1.git.1.3c936ee.el7?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-dockerregistry-0:3.11.232-1.git.1.e5150dd.el7.src",
                "product": {
                  "name": "atomic-openshift-dockerregistry-0:3.11.232-1.git.1.e5150dd.el7.src",
                  "product_id": "atomic-openshift-dockerregistry-0:3.11.232-1.git.1.e5150dd.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-dockerregistry@3.11.232-1.git.1.e5150dd.el7?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "golang-github-prometheus-node_exporter-0:3.11.232-1.git.1.0216923.el7.src",
                "product": {
                  "name": "golang-github-prometheus-node_exporter-0:3.11.232-1.git.1.0216923.el7.src",
                  "product_id": "golang-github-prometheus-node_exporter-0:3.11.232-1.git.1.0216923.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/golang-github-prometheus-node_exporter@3.11.232-1.git.1.0216923.el7?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.src",
                "product": {
                  "name": "atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.src",
                  "product_id": "atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-node-problem-detector@3.11.232-1.git.1.d41afaf.el7?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.src",
                "product": {
                  "name": "openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.src",
                  "product_id": "openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-enterprise-autoheal@3.11.232-1.git.1.2756a13.el7?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.src",
                "product": {
                  "name": "openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.src",
                  "product_id": "openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-enterprise-cluster-capacity@3.11.232-1.git.1.2e0c082.el7?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.src",
                "product": {
                  "name": "atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.src",
                  "product_id": "atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-web-console@3.11.232-1.git.1.0f92c9e.el7?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.src",
                "product": {
                  "name": "atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.src",
                  "product_id": "atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-service-idler@3.11.232-1.git.1.424e270.el7?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.src",
                "product": {
                  "name": "atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.src",
                  "product_id": "atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-metrics-server@3.11.232-1.git.1.8c5f5b4.el7?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "golang-github-prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.src",
                "product": {
                  "name": "golang-github-prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.src",
                  "product_id": "golang-github-prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/golang-github-prometheus-alertmanager@3.11.232-1.git.1.abfb991.el7?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-kuryr-0:3.11.232-1.git.1.d2cedd4.el7.src",
                "product": {
                  "name": "openshift-kuryr-0:3.11.232-1.git.1.d2cedd4.el7.src",
                  "product_id": "openshift-kuryr-0:3.11.232-1.git.1.d2cedd4.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-kuryr@3.11.232-1.git.1.d2cedd4.el7?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.src",
                "product": {
                  "name": "atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.src",
                  "product_id": "atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift@3.11.232-1.git.0.a5bc32f.el7?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-ansible-0:3.11.232-1.git.0.f0f2213.el7.src",
                "product": {
                  "name": "openshift-ansible-0:3.11.232-1.git.0.f0f2213.el7.src",
                  "product_id": "openshift-ansible-0:3.11.232-1.git.0.f0f2213.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-ansible@3.11.232-1.git.0.f0f2213.el7?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "jenkins-2-plugins-0:3.11.1591354111-1.el7.src",
                "product": {
                  "name": "jenkins-2-plugins-0:3.11.1591354111-1.el7.src",
                  "product_id": "jenkins-2-plugins-0:3.11.1591354111-1.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jenkins-2-plugins@3.11.1591354111-1.el7?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "jenkins-0:2.222.1.1591351669-1.el7.src",
                "product": {
                  "name": "jenkins-0:2.222.1.1591351669-1.el7.src",
                  "product_id": "jenkins-0:2.222.1.1591351669-1.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jenkins@2.222.1.1591351669-1.el7?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python-openshift-1:0.6.4-2.el7.src",
                "product": {
                  "name": "python-openshift-1:0.6.4-2.el7.src",
                  "product_id": "python-openshift-1:0.6.4-2.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python-openshift@0.6.4-2.el7?arch=src\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.src",
                "product": {
                  "name": "cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.src",
                  "product_id": "cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-tools@1.11.1-3.rhaos3.11.gitedabfb5.el7?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "golang-github-cpuguy83-go-md2man-0:1.0.7-1.el7.src",
                "product": {
                  "name": "golang-github-cpuguy83-go-md2man-0:1.0.7-1.el7.src",
                  "product_id": "golang-github-cpuguy83-go-md2man-0:1.0.7-1.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/golang-github-cpuguy83-go-md2man@1.0.7-1.el7?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "openshift-kuryr-cni-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
                "product": {
                  "name": "openshift-kuryr-cni-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
                  "product_id": "openshift-kuryr-cni-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-kuryr-cni@3.11.232-1.git.1.d2cedd4.el7?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-kuryr-common-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
                "product": {
                  "name": "openshift-kuryr-common-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
                  "product_id": "openshift-kuryr-common-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-kuryr-common@3.11.232-1.git.1.d2cedd4.el7?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-kuryr-controller-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
                "product": {
                  "name": "openshift-kuryr-controller-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
                  "product_id": "openshift-kuryr-controller-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-kuryr-controller@3.11.232-1.git.1.d2cedd4.el7?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python2-kuryr-kubernetes-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
                "product": {
                  "name": "python2-kuryr-kubernetes-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
                  "product_id": "python2-kuryr-kubernetes-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python2-kuryr-kubernetes@3.11.232-1.git.1.d2cedd4.el7?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-docker-excluder-0:3.11.232-1.git.0.a5bc32f.el7.noarch",
                "product": {
                  "name": "atomic-openshift-docker-excluder-0:3.11.232-1.git.0.a5bc32f.el7.noarch",
                  "product_id": "atomic-openshift-docker-excluder-0:3.11.232-1.git.0.a5bc32f.el7.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-docker-excluder@3.11.232-1.git.0.a5bc32f.el7?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-excluder-0:3.11.232-1.git.0.a5bc32f.el7.noarch",
                "product": {
                  "name": "atomic-openshift-excluder-0:3.11.232-1.git.0.a5bc32f.el7.noarch",
                  "product_id": "atomic-openshift-excluder-0:3.11.232-1.git.0.a5bc32f.el7.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-excluder@3.11.232-1.git.0.a5bc32f.el7?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-ansible-0:3.11.232-1.git.0.f0f2213.el7.noarch",
                "product": {
                  "name": "openshift-ansible-0:3.11.232-1.git.0.f0f2213.el7.noarch",
                  "product_id": "openshift-ansible-0:3.11.232-1.git.0.f0f2213.el7.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-ansible@3.11.232-1.git.0.f0f2213.el7?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-ansible-docs-0:3.11.232-1.git.0.f0f2213.el7.noarch",
                "product": {
                  "name": "openshift-ansible-docs-0:3.11.232-1.git.0.f0f2213.el7.noarch",
                  "product_id": "openshift-ansible-docs-0:3.11.232-1.git.0.f0f2213.el7.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-ansible-docs@3.11.232-1.git.0.f0f2213.el7?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-ansible-playbooks-0:3.11.232-1.git.0.f0f2213.el7.noarch",
                "product": {
                  "name": "openshift-ansible-playbooks-0:3.11.232-1.git.0.f0f2213.el7.noarch",
                  "product_id": "openshift-ansible-playbooks-0:3.11.232-1.git.0.f0f2213.el7.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-ansible-playbooks@3.11.232-1.git.0.f0f2213.el7?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-ansible-roles-0:3.11.232-1.git.0.f0f2213.el7.noarch",
                "product": {
                  "name": "openshift-ansible-roles-0:3.11.232-1.git.0.f0f2213.el7.noarch",
                  "product_id": "openshift-ansible-roles-0:3.11.232-1.git.0.f0f2213.el7.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-ansible-roles@3.11.232-1.git.0.f0f2213.el7?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-ansible-test-0:3.11.232-1.git.0.f0f2213.el7.noarch",
                "product": {
                  "name": "openshift-ansible-test-0:3.11.232-1.git.0.f0f2213.el7.noarch",
                  "product_id": "openshift-ansible-test-0:3.11.232-1.git.0.f0f2213.el7.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-ansible-test@3.11.232-1.git.0.f0f2213.el7?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "jenkins-2-plugins-0:3.11.1591354111-1.el7.noarch",
                "product": {
                  "name": "jenkins-2-plugins-0:3.11.1591354111-1.el7.noarch",
                  "product_id": "jenkins-2-plugins-0:3.11.1591354111-1.el7.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jenkins-2-plugins@3.11.1591354111-1.el7?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "jenkins-0:2.222.1.1591351669-1.el7.noarch",
                "product": {
                  "name": "jenkins-0:2.222.1.1591351669-1.el7.noarch",
                  "product_id": "jenkins-0:2.222.1.1591351669-1.el7.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jenkins@2.222.1.1591351669-1.el7?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python2-openshift-1:0.6.4-2.el7.noarch",
                "product": {
                  "name": "python2-openshift-1:0.6.4-2.el7.noarch",
                  "product_id": "python2-openshift-1:0.6.4-2.el7.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python2-openshift@0.6.4-2.el7?arch=noarch\u0026epoch=1"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.ppc64le"
        },
        "product_reference": "atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.ppc64le",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.src as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.src"
        },
        "product_reference": "atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.x86_64"
        },
        "product_reference": "atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-enterprise-service-catalog-svcat-1:3.11.232-1.git.1.d1e3501.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-svcat-1:3.11.232-1.git.1.d1e3501.el7.ppc64le"
        },
        "product_reference": "atomic-enterprise-service-catalog-svcat-1:3.11.232-1.git.1.d1e3501.el7.ppc64le",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-enterprise-service-catalog-svcat-1:3.11.232-1.git.1.d1e3501.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-svcat-1:3.11.232-1.git.1.d1e3501.el7.x86_64"
        },
        "product_reference": "atomic-enterprise-service-catalog-svcat-1:3.11.232-1.git.1.d1e3501.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le"
        },
        "product_reference": "atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.src as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.src"
        },
        "product_reference": "atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.x86_64"
        },
        "product_reference": "atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-clients-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-clients-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le"
        },
        "product_reference": "atomic-openshift-clients-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-clients-0:3.11.232-1.git.0.a5bc32f.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-clients-0:3.11.232-1.git.0.a5bc32f.el7.x86_64"
        },
        "product_reference": "atomic-openshift-clients-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-clients-redistributable-0:3.11.232-1.git.0.a5bc32f.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-clients-redistributable-0:3.11.232-1.git.0.a5bc32f.el7.x86_64"
        },
        "product_reference": "atomic-openshift-clients-redistributable-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.ppc64le"
        },
        "product_reference": "atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.ppc64le",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.src as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.src"
        },
        "product_reference": "atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.x86_64"
        },
        "product_reference": "atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.ppc64le"
        },
        "product_reference": "atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.ppc64le",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.src as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.src"
        },
        "product_reference": "atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.x86_64"
        },
        "product_reference": "atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-docker-excluder-0:3.11.232-1.git.0.a5bc32f.el7.noarch as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-docker-excluder-0:3.11.232-1.git.0.a5bc32f.el7.noarch"
        },
        "product_reference": "atomic-openshift-docker-excluder-0:3.11.232-1.git.0.a5bc32f.el7.noarch",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-dockerregistry-0:3.11.232-1.git.1.e5150dd.el7.src as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.232-1.git.1.e5150dd.el7.src"
        },
        "product_reference": "atomic-openshift-dockerregistry-0:3.11.232-1.git.1.e5150dd.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-dockerregistry-0:3.11.232-1.git.1.e5150dd.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.232-1.git.1.e5150dd.el7.x86_64"
        },
        "product_reference": "atomic-openshift-dockerregistry-0:3.11.232-1.git.1.e5150dd.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-excluder-0:3.11.232-1.git.0.a5bc32f.el7.noarch as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-excluder-0:3.11.232-1.git.0.a5bc32f.el7.noarch"
        },
        "product_reference": "atomic-openshift-excluder-0:3.11.232-1.git.0.a5bc32f.el7.noarch",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-hyperkube-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-hyperkube-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le"
        },
        "product_reference": "atomic-openshift-hyperkube-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-hyperkube-0:3.11.232-1.git.0.a5bc32f.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-hyperkube-0:3.11.232-1.git.0.a5bc32f.el7.x86_64"
        },
        "product_reference": "atomic-openshift-hyperkube-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-hypershift-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-hypershift-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le"
        },
        "product_reference": "atomic-openshift-hypershift-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-hypershift-0:3.11.232-1.git.0.a5bc32f.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-hypershift-0:3.11.232-1.git.0.a5bc32f.el7.x86_64"
        },
        "product_reference": "atomic-openshift-hypershift-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-master-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-master-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le"
        },
        "product_reference": "atomic-openshift-master-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-master-0:3.11.232-1.git.0.a5bc32f.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-master-0:3.11.232-1.git.0.a5bc32f.el7.x86_64"
        },
        "product_reference": "atomic-openshift-master-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.ppc64le"
        },
        "product_reference": "atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.ppc64le",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.src as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.src"
        },
        "product_reference": "atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.x86_64"
        },
        "product_reference": "atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-node-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-node-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le"
        },
        "product_reference": "atomic-openshift-node-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-node-0:3.11.232-1.git.0.a5bc32f.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-node-0:3.11.232-1.git.0.a5bc32f.el7.x86_64"
        },
        "product_reference": "atomic-openshift-node-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.ppc64le"
        },
        "product_reference": "atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.ppc64le",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.src as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.src"
        },
        "product_reference": "atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.x86_64"
        },
        "product_reference": "atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-pod-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-pod-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le"
        },
        "product_reference": "atomic-openshift-pod-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-pod-0:3.11.232-1.git.0.a5bc32f.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-pod-0:3.11.232-1.git.0.a5bc32f.el7.x86_64"
        },
        "product_reference": "atomic-openshift-pod-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-sdn-ovs-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-sdn-ovs-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le"
        },
        "product_reference": "atomic-openshift-sdn-ovs-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-sdn-ovs-0:3.11.232-1.git.0.a5bc32f.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-sdn-ovs-0:3.11.232-1.git.0.a5bc32f.el7.x86_64"
        },
        "product_reference": "atomic-openshift-sdn-ovs-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.ppc64le"
        },
        "product_reference": "atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.ppc64le",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.src as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.src"
        },
        "product_reference": "atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.x86_64"
        },
        "product_reference": "atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-template-service-broker-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-template-service-broker-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le"
        },
        "product_reference": "atomic-openshift-template-service-broker-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-template-service-broker-0:3.11.232-1.git.0.a5bc32f.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-template-service-broker-0:3.11.232-1.git.0.a5bc32f.el7.x86_64"
        },
        "product_reference": "atomic-openshift-template-service-broker-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-tests-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-tests-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le"
        },
        "product_reference": "atomic-openshift-tests-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-tests-0:3.11.232-1.git.0.a5bc32f.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-tests-0:3.11.232-1.git.0.a5bc32f.el7.x86_64"
        },
        "product_reference": "atomic-openshift-tests-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.ppc64le"
        },
        "product_reference": "atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.ppc64le",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.src as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.src"
        },
        "product_reference": "atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.x86_64"
        },
        "product_reference": "atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.ppc64le"
        },
        "product_reference": "cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.ppc64le",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.src as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.src"
        },
        "product_reference": "cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.x86_64"
        },
        "product_reference": "cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-tools-debuginfo-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:cri-tools-debuginfo-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.ppc64le"
        },
        "product_reference": "cri-tools-debuginfo-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.ppc64le",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-tools-debuginfo-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:cri-tools-debuginfo-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.x86_64"
        },
        "product_reference": "cri-tools-debuginfo-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "golang-github-cpuguy83-go-md2man-0:1.0.7-1.el7.src as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:golang-github-cpuguy83-go-md2man-0:1.0.7-1.el7.src"
        },
        "product_reference": "golang-github-cpuguy83-go-md2man-0:1.0.7-1.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "golang-github-cpuguy83-go-md2man-0:1.0.7-1.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:golang-github-cpuguy83-go-md2man-0:1.0.7-1.el7.x86_64"
        },
        "product_reference": "golang-github-cpuguy83-go-md2man-0:1.0.7-1.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.ppc64le"
        },
        "product_reference": "golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.ppc64le",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.src as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.src"
        },
        "product_reference": "golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.x86_64"
        },
        "product_reference": "golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "golang-github-prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.src as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:golang-github-prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.src"
        },
        "product_reference": "golang-github-prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "golang-github-prometheus-node_exporter-0:3.11.232-1.git.1.0216923.el7.src as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:golang-github-prometheus-node_exporter-0:3.11.232-1.git.1.0216923.el7.src"
        },
        "product_reference": "golang-github-prometheus-node_exporter-0:3.11.232-1.git.1.0216923.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "golang-github-prometheus-prometheus-0:3.11.232-1.git.1.3c936ee.el7.src as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:golang-github-prometheus-prometheus-0:3.11.232-1.git.1.3c936ee.el7.src"
        },
        "product_reference": "golang-github-prometheus-prometheus-0:3.11.232-1.git.1.3c936ee.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jenkins-0:2.222.1.1591351669-1.el7.noarch as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:jenkins-0:2.222.1.1591351669-1.el7.noarch"
        },
        "product_reference": "jenkins-0:2.222.1.1591351669-1.el7.noarch",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jenkins-0:2.222.1.1591351669-1.el7.src as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:jenkins-0:2.222.1.1591351669-1.el7.src"
        },
        "product_reference": "jenkins-0:2.222.1.1591351669-1.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jenkins-2-plugins-0:3.11.1591354111-1.el7.noarch as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:jenkins-2-plugins-0:3.11.1591354111-1.el7.noarch"
        },
        "product_reference": "jenkins-2-plugins-0:3.11.1591354111-1.el7.noarch",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jenkins-2-plugins-0:3.11.1591354111-1.el7.src as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:jenkins-2-plugins-0:3.11.1591354111-1.el7.src"
        },
        "product_reference": "jenkins-2-plugins-0:3.11.1591354111-1.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-ansible-0:3.11.232-1.git.0.f0f2213.el7.noarch as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:openshift-ansible-0:3.11.232-1.git.0.f0f2213.el7.noarch"
        },
        "product_reference": "openshift-ansible-0:3.11.232-1.git.0.f0f2213.el7.noarch",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-ansible-0:3.11.232-1.git.0.f0f2213.el7.src as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:openshift-ansible-0:3.11.232-1.git.0.f0f2213.el7.src"
        },
        "product_reference": "openshift-ansible-0:3.11.232-1.git.0.f0f2213.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-ansible-docs-0:3.11.232-1.git.0.f0f2213.el7.noarch as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:openshift-ansible-docs-0:3.11.232-1.git.0.f0f2213.el7.noarch"
        },
        "product_reference": "openshift-ansible-docs-0:3.11.232-1.git.0.f0f2213.el7.noarch",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-ansible-playbooks-0:3.11.232-1.git.0.f0f2213.el7.noarch as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:openshift-ansible-playbooks-0:3.11.232-1.git.0.f0f2213.el7.noarch"
        },
        "product_reference": "openshift-ansible-playbooks-0:3.11.232-1.git.0.f0f2213.el7.noarch",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-ansible-roles-0:3.11.232-1.git.0.f0f2213.el7.noarch as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:openshift-ansible-roles-0:3.11.232-1.git.0.f0f2213.el7.noarch"
        },
        "product_reference": "openshift-ansible-roles-0:3.11.232-1.git.0.f0f2213.el7.noarch",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-ansible-test-0:3.11.232-1.git.0.f0f2213.el7.noarch as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:openshift-ansible-test-0:3.11.232-1.git.0.f0f2213.el7.noarch"
        },
        "product_reference": "openshift-ansible-test-0:3.11.232-1.git.0.f0f2213.el7.noarch",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.ppc64le"
        },
        "product_reference": "openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.ppc64le",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.src as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.src"
        },
        "product_reference": "openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.x86_64"
        },
        "product_reference": "openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.ppc64le"
        },
        "product_reference": "openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.ppc64le",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.src as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.src"
        },
        "product_reference": "openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.x86_64"
        },
        "product_reference": "openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-kuryr-0:3.11.232-1.git.1.d2cedd4.el7.src as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:openshift-kuryr-0:3.11.232-1.git.1.d2cedd4.el7.src"
        },
        "product_reference": "openshift-kuryr-0:3.11.232-1.git.1.d2cedd4.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-kuryr-cni-0:3.11.232-1.git.1.d2cedd4.el7.noarch as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:openshift-kuryr-cni-0:3.11.232-1.git.1.d2cedd4.el7.noarch"
        },
        "product_reference": "openshift-kuryr-cni-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-kuryr-common-0:3.11.232-1.git.1.d2cedd4.el7.noarch as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:openshift-kuryr-common-0:3.11.232-1.git.1.d2cedd4.el7.noarch"
        },
        "product_reference": "openshift-kuryr-common-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-kuryr-controller-0:3.11.232-1.git.1.d2cedd4.el7.noarch as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:openshift-kuryr-controller-0:3.11.232-1.git.1.d2cedd4.el7.noarch"
        },
        "product_reference": "openshift-kuryr-controller-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "prometheus-0:3.11.232-1.git.1.3c936ee.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:prometheus-0:3.11.232-1.git.1.3c936ee.el7.ppc64le"
        },
        "product_reference": "prometheus-0:3.11.232-1.git.1.3c936ee.el7.ppc64le",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "prometheus-0:3.11.232-1.git.1.3c936ee.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:prometheus-0:3.11.232-1.git.1.3c936ee.el7.x86_64"
        },
        "product_reference": "prometheus-0:3.11.232-1.git.1.3c936ee.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.ppc64le"
        },
        "product_reference": "prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.ppc64le",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.x86_64"
        },
        "product_reference": "prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "prometheus-node-exporter-0:3.11.232-1.git.1.0216923.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:prometheus-node-exporter-0:3.11.232-1.git.1.0216923.el7.ppc64le"
        },
        "product_reference": "prometheus-node-exporter-0:3.11.232-1.git.1.0216923.el7.ppc64le",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "prometheus-node-exporter-0:3.11.232-1.git.1.0216923.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:prometheus-node-exporter-0:3.11.232-1.git.1.0216923.el7.x86_64"
        },
        "product_reference": "prometheus-node-exporter-0:3.11.232-1.git.1.0216923.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python-openshift-1:0.6.4-2.el7.src as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:python-openshift-1:0.6.4-2.el7.src"
        },
        "product_reference": "python-openshift-1:0.6.4-2.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python2-kuryr-kubernetes-0:3.11.232-1.git.1.d2cedd4.el7.noarch as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:python2-kuryr-kubernetes-0:3.11.232-1.git.1.d2cedd4.el7.noarch"
        },
        "product_reference": "python2-kuryr-kubernetes-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python2-openshift-1:0.6.4-2.el7.noarch as a component of Red Hat OpenShift Container Platform 3.11",
          "product_id": "7Server-RH7-RHOSE-3.11:python2-openshift-1:0.6.4-2.el7.noarch"
        },
        "product_reference": "python2-openshift-1:0.6.4-2.el7.noarch",
        "relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2020-2160",
      "cwe": {
        "id": "CWE-352",
        "name": "Cross-Site Request Forgery (CSRF)"
      },
      "discovery_date": "2020-03-26T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-svcat-1:3.11.232-1.git.1.d1e3501.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-svcat-1:3.11.232-1.git.1.d1e3501.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-clients-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-clients-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-clients-redistributable-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-docker-excluder-0:3.11.232-1.git.0.a5bc32f.el7.noarch",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.232-1.git.1.e5150dd.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.232-1.git.1.e5150dd.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-excluder-0:3.11.232-1.git.0.a5bc32f.el7.noarch",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-hyperkube-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-hyperkube-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-hypershift-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-hypershift-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-master-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-master-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-node-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-node-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-pod-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-pod-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-sdn-ovs-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-sdn-ovs-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-template-service-broker-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-template-service-broker-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-tests-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-tests-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.src",
            "7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:cri-tools-debuginfo-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:cri-tools-debuginfo-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:golang-github-cpuguy83-go-md2man-0:1.0.7-1.el7.src",
            "7Server-RH7-RHOSE-3.11:golang-github-cpuguy83-go-md2man-0:1.0.7-1.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.src",
            "7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:golang-github-prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.src",
            "7Server-RH7-RHOSE-3.11:golang-github-prometheus-node_exporter-0:3.11.232-1.git.1.0216923.el7.src",
            "7Server-RH7-RHOSE-3.11:golang-github-prometheus-prometheus-0:3.11.232-1.git.1.3c936ee.el7.src",
            "7Server-RH7-RHOSE-3.11:jenkins-2-plugins-0:3.11.1591354111-1.el7.noarch",
            "7Server-RH7-RHOSE-3.11:jenkins-2-plugins-0:3.11.1591354111-1.el7.src",
            "7Server-RH7-RHOSE-3.11:openshift-ansible-0:3.11.232-1.git.0.f0f2213.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-ansible-0:3.11.232-1.git.0.f0f2213.el7.src",
            "7Server-RH7-RHOSE-3.11:openshift-ansible-docs-0:3.11.232-1.git.0.f0f2213.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-ansible-playbooks-0:3.11.232-1.git.0.f0f2213.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-ansible-roles-0:3.11.232-1.git.0.f0f2213.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-ansible-test-0:3.11.232-1.git.0.f0f2213.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.src",
            "7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.src",
            "7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:openshift-kuryr-0:3.11.232-1.git.1.d2cedd4.el7.src",
            "7Server-RH7-RHOSE-3.11:openshift-kuryr-cni-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-kuryr-common-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-kuryr-controller-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
            "7Server-RH7-RHOSE-3.11:prometheus-0:3.11.232-1.git.1.3c936ee.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:prometheus-0:3.11.232-1.git.1.3c936ee.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:prometheus-node-exporter-0:3.11.232-1.git.1.0216923.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:prometheus-node-exporter-0:3.11.232-1.git.1.0216923.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:python-openshift-1:0.6.4-2.el7.src",
            "7Server-RH7-RHOSE-3.11:python2-kuryr-kubernetes-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
            "7Server-RH7-RHOSE-3.11:python2-openshift-1:0.6.4-2.el7.noarch"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1819190"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Jenkins 2.227 and earlier, LTS 2.204.5 and earlier uses different representations of request URL paths, which allows attackers to craft URLs that allow bypassing CSRF protection of any target URL.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "jenkins: CSRF protection bypass via crafted URLs",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-RH7-RHOSE-3.11:jenkins-0:2.222.1.1591351669-1.el7.noarch",
          "7Server-RH7-RHOSE-3.11:jenkins-0:2.222.1.1591351669-1.el7.src"
        ],
        "known_not_affected": [
          "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.src",
          "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-svcat-1:3.11.232-1.git.1.d1e3501.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-svcat-1:3.11.232-1.git.1.d1e3501.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.src",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-clients-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-clients-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-clients-redistributable-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.src",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.src",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-docker-excluder-0:3.11.232-1.git.0.a5bc32f.el7.noarch",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.232-1.git.1.e5150dd.el7.src",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.232-1.git.1.e5150dd.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-excluder-0:3.11.232-1.git.0.a5bc32f.el7.noarch",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-hyperkube-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-hyperkube-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-hypershift-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-hypershift-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-master-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-master-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.src",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-node-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-node-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.src",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-pod-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-pod-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-sdn-ovs-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-sdn-ovs-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.src",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-template-service-broker-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-template-service-broker-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-tests-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-tests-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.src",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.src",
          "7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:cri-tools-debuginfo-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:cri-tools-debuginfo-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:golang-github-cpuguy83-go-md2man-0:1.0.7-1.el7.src",
          "7Server-RH7-RHOSE-3.11:golang-github-cpuguy83-go-md2man-0:1.0.7-1.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.src",
          "7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:golang-github-prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.src",
          "7Server-RH7-RHOSE-3.11:golang-github-prometheus-node_exporter-0:3.11.232-1.git.1.0216923.el7.src",
          "7Server-RH7-RHOSE-3.11:golang-github-prometheus-prometheus-0:3.11.232-1.git.1.3c936ee.el7.src",
          "7Server-RH7-RHOSE-3.11:jenkins-2-plugins-0:3.11.1591354111-1.el7.noarch",
          "7Server-RH7-RHOSE-3.11:jenkins-2-plugins-0:3.11.1591354111-1.el7.src",
          "7Server-RH7-RHOSE-3.11:openshift-ansible-0:3.11.232-1.git.0.f0f2213.el7.noarch",
          "7Server-RH7-RHOSE-3.11:openshift-ansible-0:3.11.232-1.git.0.f0f2213.el7.src",
          "7Server-RH7-RHOSE-3.11:openshift-ansible-docs-0:3.11.232-1.git.0.f0f2213.el7.noarch",
          "7Server-RH7-RHOSE-3.11:openshift-ansible-playbooks-0:3.11.232-1.git.0.f0f2213.el7.noarch",
          "7Server-RH7-RHOSE-3.11:openshift-ansible-roles-0:3.11.232-1.git.0.f0f2213.el7.noarch",
          "7Server-RH7-RHOSE-3.11:openshift-ansible-test-0:3.11.232-1.git.0.f0f2213.el7.noarch",
          "7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.src",
          "7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.src",
          "7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:openshift-kuryr-0:3.11.232-1.git.1.d2cedd4.el7.src",
          "7Server-RH7-RHOSE-3.11:openshift-kuryr-cni-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
          "7Server-RH7-RHOSE-3.11:openshift-kuryr-common-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
          "7Server-RH7-RHOSE-3.11:openshift-kuryr-controller-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
          "7Server-RH7-RHOSE-3.11:prometheus-0:3.11.232-1.git.1.3c936ee.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:prometheus-0:3.11.232-1.git.1.3c936ee.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:prometheus-node-exporter-0:3.11.232-1.git.1.0216923.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:prometheus-node-exporter-0:3.11.232-1.git.1.0216923.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:python-openshift-1:0.6.4-2.el7.src",
          "7Server-RH7-RHOSE-3.11:python2-kuryr-kubernetes-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
          "7Server-RH7-RHOSE-3.11:python2-openshift-1:0.6.4-2.el7.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2020-2160"
        },
        {
          "category": "external",
          "summary": "RHBZ#1819190",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1819190"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2020-2160",
          "url": "https://www.cve.org/CVERecord?id=CVE-2020-2160"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2160",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2160"
        },
        {
          "category": "external",
          "summary": "https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1774",
          "url": "https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1774"
        }
      ],
      "release_date": "2020-03-25T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2020-06-17T20:23:07+00:00",
          "details": "Before applying this update, ensure all previously released errata relevant\nto your system is applied.\n\nSee the following documentation, which will be updated shortly for release\n3.11.232, for important instructions on how to upgrade your cluster and fully\napply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/3.11/release_notes/ocp_3_11_release_notes.html\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258.",
          "product_ids": [
            "7Server-RH7-RHOSE-3.11:jenkins-0:2.222.1.1591351669-1.el7.noarch",
            "7Server-RH7-RHOSE-3.11:jenkins-0:2.222.1.1591351669-1.el7.src"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHBA-2020:2477"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-svcat-1:3.11.232-1.git.1.d1e3501.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-svcat-1:3.11.232-1.git.1.d1e3501.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-clients-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-clients-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-clients-redistributable-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-docker-excluder-0:3.11.232-1.git.0.a5bc32f.el7.noarch",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.232-1.git.1.e5150dd.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.232-1.git.1.e5150dd.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-excluder-0:3.11.232-1.git.0.a5bc32f.el7.noarch",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-hyperkube-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-hyperkube-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-hypershift-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-hypershift-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-master-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-master-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-node-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-node-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-pod-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-pod-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-sdn-ovs-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-sdn-ovs-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-template-service-broker-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-template-service-broker-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-tests-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-tests-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.src",
            "7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:cri-tools-debuginfo-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:cri-tools-debuginfo-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:golang-github-cpuguy83-go-md2man-0:1.0.7-1.el7.src",
            "7Server-RH7-RHOSE-3.11:golang-github-cpuguy83-go-md2man-0:1.0.7-1.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.src",
            "7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:golang-github-prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.src",
            "7Server-RH7-RHOSE-3.11:golang-github-prometheus-node_exporter-0:3.11.232-1.git.1.0216923.el7.src",
            "7Server-RH7-RHOSE-3.11:golang-github-prometheus-prometheus-0:3.11.232-1.git.1.3c936ee.el7.src",
            "7Server-RH7-RHOSE-3.11:jenkins-0:2.222.1.1591351669-1.el7.noarch",
            "7Server-RH7-RHOSE-3.11:jenkins-0:2.222.1.1591351669-1.el7.src",
            "7Server-RH7-RHOSE-3.11:jenkins-2-plugins-0:3.11.1591354111-1.el7.noarch",
            "7Server-RH7-RHOSE-3.11:jenkins-2-plugins-0:3.11.1591354111-1.el7.src",
            "7Server-RH7-RHOSE-3.11:openshift-ansible-0:3.11.232-1.git.0.f0f2213.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-ansible-0:3.11.232-1.git.0.f0f2213.el7.src",
            "7Server-RH7-RHOSE-3.11:openshift-ansible-docs-0:3.11.232-1.git.0.f0f2213.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-ansible-playbooks-0:3.11.232-1.git.0.f0f2213.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-ansible-roles-0:3.11.232-1.git.0.f0f2213.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-ansible-test-0:3.11.232-1.git.0.f0f2213.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.src",
            "7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.src",
            "7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:openshift-kuryr-0:3.11.232-1.git.1.d2cedd4.el7.src",
            "7Server-RH7-RHOSE-3.11:openshift-kuryr-cni-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-kuryr-common-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-kuryr-controller-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
            "7Server-RH7-RHOSE-3.11:prometheus-0:3.11.232-1.git.1.3c936ee.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:prometheus-0:3.11.232-1.git.1.3c936ee.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:prometheus-node-exporter-0:3.11.232-1.git.1.0216923.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:prometheus-node-exporter-0:3.11.232-1.git.1.0216923.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:python-openshift-1:0.6.4-2.el7.src",
            "7Server-RH7-RHOSE-3.11:python2-kuryr-kubernetes-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
            "7Server-RH7-RHOSE-3.11:python2-openshift-1:0.6.4-2.el7.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "jenkins: CSRF protection bypass via crafted URLs"
    },
    {
      "cve": "CVE-2020-2161",
      "cwe": {
        "id": "CWE-79",
        "name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
      },
      "discovery_date": "2020-03-26T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-svcat-1:3.11.232-1.git.1.d1e3501.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-svcat-1:3.11.232-1.git.1.d1e3501.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-clients-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-clients-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-clients-redistributable-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-docker-excluder-0:3.11.232-1.git.0.a5bc32f.el7.noarch",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.232-1.git.1.e5150dd.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.232-1.git.1.e5150dd.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-excluder-0:3.11.232-1.git.0.a5bc32f.el7.noarch",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-hyperkube-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-hyperkube-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-hypershift-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-hypershift-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-master-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-master-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-node-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-node-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-pod-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-pod-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-sdn-ovs-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-sdn-ovs-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-template-service-broker-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-template-service-broker-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-tests-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-tests-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.src",
            "7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:cri-tools-debuginfo-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:cri-tools-debuginfo-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:golang-github-cpuguy83-go-md2man-0:1.0.7-1.el7.src",
            "7Server-RH7-RHOSE-3.11:golang-github-cpuguy83-go-md2man-0:1.0.7-1.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.src",
            "7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:golang-github-prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.src",
            "7Server-RH7-RHOSE-3.11:golang-github-prometheus-node_exporter-0:3.11.232-1.git.1.0216923.el7.src",
            "7Server-RH7-RHOSE-3.11:golang-github-prometheus-prometheus-0:3.11.232-1.git.1.3c936ee.el7.src",
            "7Server-RH7-RHOSE-3.11:jenkins-2-plugins-0:3.11.1591354111-1.el7.noarch",
            "7Server-RH7-RHOSE-3.11:jenkins-2-plugins-0:3.11.1591354111-1.el7.src",
            "7Server-RH7-RHOSE-3.11:openshift-ansible-0:3.11.232-1.git.0.f0f2213.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-ansible-0:3.11.232-1.git.0.f0f2213.el7.src",
            "7Server-RH7-RHOSE-3.11:openshift-ansible-docs-0:3.11.232-1.git.0.f0f2213.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-ansible-playbooks-0:3.11.232-1.git.0.f0f2213.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-ansible-roles-0:3.11.232-1.git.0.f0f2213.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-ansible-test-0:3.11.232-1.git.0.f0f2213.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.src",
            "7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.src",
            "7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:openshift-kuryr-0:3.11.232-1.git.1.d2cedd4.el7.src",
            "7Server-RH7-RHOSE-3.11:openshift-kuryr-cni-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-kuryr-common-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-kuryr-controller-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
            "7Server-RH7-RHOSE-3.11:prometheus-0:3.11.232-1.git.1.3c936ee.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:prometheus-0:3.11.232-1.git.1.3c936ee.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:prometheus-node-exporter-0:3.11.232-1.git.1.0216923.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:prometheus-node-exporter-0:3.11.232-1.git.1.0216923.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:python-openshift-1:0.6.4-2.el7.src",
            "7Server-RH7-RHOSE-3.11:python2-kuryr-kubernetes-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
            "7Server-RH7-RHOSE-3.11:python2-openshift-1:0.6.4-2.el7.noarch"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1819198"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Jenkins 2.227 and earlier, LTS 2.204.5 and earlier does not properly escape node labels that are shown in the form validation for label expressions on job configuration pages, resulting in a stored XSS vulnerability exploitable by users able to define node labels.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "jenkins: XSS in job configuration pages",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-RH7-RHOSE-3.11:jenkins-0:2.222.1.1591351669-1.el7.noarch",
          "7Server-RH7-RHOSE-3.11:jenkins-0:2.222.1.1591351669-1.el7.src"
        ],
        "known_not_affected": [
          "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.src",
          "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-svcat-1:3.11.232-1.git.1.d1e3501.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-svcat-1:3.11.232-1.git.1.d1e3501.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.src",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-clients-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-clients-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-clients-redistributable-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.src",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.src",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-docker-excluder-0:3.11.232-1.git.0.a5bc32f.el7.noarch",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.232-1.git.1.e5150dd.el7.src",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.232-1.git.1.e5150dd.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-excluder-0:3.11.232-1.git.0.a5bc32f.el7.noarch",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-hyperkube-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-hyperkube-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-hypershift-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-hypershift-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-master-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-master-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.src",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-node-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-node-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.src",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-pod-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-pod-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-sdn-ovs-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-sdn-ovs-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.src",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-template-service-broker-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-template-service-broker-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-tests-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-tests-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.src",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.src",
          "7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:cri-tools-debuginfo-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:cri-tools-debuginfo-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:golang-github-cpuguy83-go-md2man-0:1.0.7-1.el7.src",
          "7Server-RH7-RHOSE-3.11:golang-github-cpuguy83-go-md2man-0:1.0.7-1.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.src",
          "7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:golang-github-prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.src",
          "7Server-RH7-RHOSE-3.11:golang-github-prometheus-node_exporter-0:3.11.232-1.git.1.0216923.el7.src",
          "7Server-RH7-RHOSE-3.11:golang-github-prometheus-prometheus-0:3.11.232-1.git.1.3c936ee.el7.src",
          "7Server-RH7-RHOSE-3.11:jenkins-2-plugins-0:3.11.1591354111-1.el7.noarch",
          "7Server-RH7-RHOSE-3.11:jenkins-2-plugins-0:3.11.1591354111-1.el7.src",
          "7Server-RH7-RHOSE-3.11:openshift-ansible-0:3.11.232-1.git.0.f0f2213.el7.noarch",
          "7Server-RH7-RHOSE-3.11:openshift-ansible-0:3.11.232-1.git.0.f0f2213.el7.src",
          "7Server-RH7-RHOSE-3.11:openshift-ansible-docs-0:3.11.232-1.git.0.f0f2213.el7.noarch",
          "7Server-RH7-RHOSE-3.11:openshift-ansible-playbooks-0:3.11.232-1.git.0.f0f2213.el7.noarch",
          "7Server-RH7-RHOSE-3.11:openshift-ansible-roles-0:3.11.232-1.git.0.f0f2213.el7.noarch",
          "7Server-RH7-RHOSE-3.11:openshift-ansible-test-0:3.11.232-1.git.0.f0f2213.el7.noarch",
          "7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.src",
          "7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.src",
          "7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:openshift-kuryr-0:3.11.232-1.git.1.d2cedd4.el7.src",
          "7Server-RH7-RHOSE-3.11:openshift-kuryr-cni-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
          "7Server-RH7-RHOSE-3.11:openshift-kuryr-common-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
          "7Server-RH7-RHOSE-3.11:openshift-kuryr-controller-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
          "7Server-RH7-RHOSE-3.11:prometheus-0:3.11.232-1.git.1.3c936ee.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:prometheus-0:3.11.232-1.git.1.3c936ee.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:prometheus-node-exporter-0:3.11.232-1.git.1.0216923.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:prometheus-node-exporter-0:3.11.232-1.git.1.0216923.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:python-openshift-1:0.6.4-2.el7.src",
          "7Server-RH7-RHOSE-3.11:python2-kuryr-kubernetes-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
          "7Server-RH7-RHOSE-3.11:python2-openshift-1:0.6.4-2.el7.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2020-2161"
        },
        {
          "category": "external",
          "summary": "RHBZ#1819198",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1819198"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2020-2161",
          "url": "https://www.cve.org/CVERecord?id=CVE-2020-2161"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2161",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2161"
        },
        {
          "category": "external",
          "summary": "https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1781",
          "url": "https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1781"
        }
      ],
      "release_date": "2020-03-25T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2020-06-17T20:23:07+00:00",
          "details": "Before applying this update, ensure all previously released errata relevant\nto your system is applied.\n\nSee the following documentation, which will be updated shortly for release\n3.11.232, for important instructions on how to upgrade your cluster and fully\napply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/3.11/release_notes/ocp_3_11_release_notes.html\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258.",
          "product_ids": [
            "7Server-RH7-RHOSE-3.11:jenkins-0:2.222.1.1591351669-1.el7.noarch",
            "7Server-RH7-RHOSE-3.11:jenkins-0:2.222.1.1591351669-1.el7.src"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHBA-2020:2477"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 5.4,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-svcat-1:3.11.232-1.git.1.d1e3501.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-svcat-1:3.11.232-1.git.1.d1e3501.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-clients-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-clients-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-clients-redistributable-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-docker-excluder-0:3.11.232-1.git.0.a5bc32f.el7.noarch",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.232-1.git.1.e5150dd.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.232-1.git.1.e5150dd.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-excluder-0:3.11.232-1.git.0.a5bc32f.el7.noarch",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-hyperkube-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-hyperkube-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-hypershift-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-hypershift-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-master-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-master-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-node-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-node-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-pod-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-pod-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-sdn-ovs-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-sdn-ovs-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-template-service-broker-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-template-service-broker-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-tests-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-tests-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.src",
            "7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:cri-tools-debuginfo-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:cri-tools-debuginfo-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:golang-github-cpuguy83-go-md2man-0:1.0.7-1.el7.src",
            "7Server-RH7-RHOSE-3.11:golang-github-cpuguy83-go-md2man-0:1.0.7-1.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.src",
            "7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:golang-github-prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.src",
            "7Server-RH7-RHOSE-3.11:golang-github-prometheus-node_exporter-0:3.11.232-1.git.1.0216923.el7.src",
            "7Server-RH7-RHOSE-3.11:golang-github-prometheus-prometheus-0:3.11.232-1.git.1.3c936ee.el7.src",
            "7Server-RH7-RHOSE-3.11:jenkins-0:2.222.1.1591351669-1.el7.noarch",
            "7Server-RH7-RHOSE-3.11:jenkins-0:2.222.1.1591351669-1.el7.src",
            "7Server-RH7-RHOSE-3.11:jenkins-2-plugins-0:3.11.1591354111-1.el7.noarch",
            "7Server-RH7-RHOSE-3.11:jenkins-2-plugins-0:3.11.1591354111-1.el7.src",
            "7Server-RH7-RHOSE-3.11:openshift-ansible-0:3.11.232-1.git.0.f0f2213.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-ansible-0:3.11.232-1.git.0.f0f2213.el7.src",
            "7Server-RH7-RHOSE-3.11:openshift-ansible-docs-0:3.11.232-1.git.0.f0f2213.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-ansible-playbooks-0:3.11.232-1.git.0.f0f2213.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-ansible-roles-0:3.11.232-1.git.0.f0f2213.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-ansible-test-0:3.11.232-1.git.0.f0f2213.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.src",
            "7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.src",
            "7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:openshift-kuryr-0:3.11.232-1.git.1.d2cedd4.el7.src",
            "7Server-RH7-RHOSE-3.11:openshift-kuryr-cni-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-kuryr-common-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-kuryr-controller-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
            "7Server-RH7-RHOSE-3.11:prometheus-0:3.11.232-1.git.1.3c936ee.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:prometheus-0:3.11.232-1.git.1.3c936ee.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:prometheus-node-exporter-0:3.11.232-1.git.1.0216923.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:prometheus-node-exporter-0:3.11.232-1.git.1.0216923.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:python-openshift-1:0.6.4-2.el7.src",
            "7Server-RH7-RHOSE-3.11:python2-kuryr-kubernetes-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
            "7Server-RH7-RHOSE-3.11:python2-openshift-1:0.6.4-2.el7.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "jenkins: XSS in job configuration pages"
    },
    {
      "cve": "CVE-2020-2162",
      "cwe": {
        "id": "CWE-79",
        "name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
      },
      "discovery_date": "2020-03-26T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-svcat-1:3.11.232-1.git.1.d1e3501.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-svcat-1:3.11.232-1.git.1.d1e3501.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-clients-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-clients-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-clients-redistributable-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-docker-excluder-0:3.11.232-1.git.0.a5bc32f.el7.noarch",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.232-1.git.1.e5150dd.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.232-1.git.1.e5150dd.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-excluder-0:3.11.232-1.git.0.a5bc32f.el7.noarch",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-hyperkube-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-hyperkube-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-hypershift-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-hypershift-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-master-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-master-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-node-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-node-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-pod-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-pod-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-sdn-ovs-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-sdn-ovs-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-template-service-broker-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-template-service-broker-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-tests-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-tests-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.src",
            "7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:cri-tools-debuginfo-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:cri-tools-debuginfo-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:golang-github-cpuguy83-go-md2man-0:1.0.7-1.el7.src",
            "7Server-RH7-RHOSE-3.11:golang-github-cpuguy83-go-md2man-0:1.0.7-1.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.src",
            "7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:golang-github-prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.src",
            "7Server-RH7-RHOSE-3.11:golang-github-prometheus-node_exporter-0:3.11.232-1.git.1.0216923.el7.src",
            "7Server-RH7-RHOSE-3.11:golang-github-prometheus-prometheus-0:3.11.232-1.git.1.3c936ee.el7.src",
            "7Server-RH7-RHOSE-3.11:jenkins-2-plugins-0:3.11.1591354111-1.el7.noarch",
            "7Server-RH7-RHOSE-3.11:jenkins-2-plugins-0:3.11.1591354111-1.el7.src",
            "7Server-RH7-RHOSE-3.11:openshift-ansible-0:3.11.232-1.git.0.f0f2213.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-ansible-0:3.11.232-1.git.0.f0f2213.el7.src",
            "7Server-RH7-RHOSE-3.11:openshift-ansible-docs-0:3.11.232-1.git.0.f0f2213.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-ansible-playbooks-0:3.11.232-1.git.0.f0f2213.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-ansible-roles-0:3.11.232-1.git.0.f0f2213.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-ansible-test-0:3.11.232-1.git.0.f0f2213.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.src",
            "7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.src",
            "7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:openshift-kuryr-0:3.11.232-1.git.1.d2cedd4.el7.src",
            "7Server-RH7-RHOSE-3.11:openshift-kuryr-cni-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-kuryr-common-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-kuryr-controller-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
            "7Server-RH7-RHOSE-3.11:prometheus-0:3.11.232-1.git.1.3c936ee.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:prometheus-0:3.11.232-1.git.1.3c936ee.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:prometheus-node-exporter-0:3.11.232-1.git.1.0216923.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:prometheus-node-exporter-0:3.11.232-1.git.1.0216923.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:python-openshift-1:0.6.4-2.el7.src",
            "7Server-RH7-RHOSE-3.11:python2-kuryr-kubernetes-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
            "7Server-RH7-RHOSE-3.11:python2-openshift-1:0.6.4-2.el7.noarch"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1819211"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Jenkins 2.227 and earlier, LTS 2.204.5 and earlier does not set Content-Security-Policy headers for files uploaded as file parameters to a build, resulting in a stored XSS vulnerability.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "jenkins: Content-Security-Policy headers for files uploaded leads to XSS",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-RH7-RHOSE-3.11:jenkins-0:2.222.1.1591351669-1.el7.noarch",
          "7Server-RH7-RHOSE-3.11:jenkins-0:2.222.1.1591351669-1.el7.src"
        ],
        "known_not_affected": [
          "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.src",
          "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-svcat-1:3.11.232-1.git.1.d1e3501.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-svcat-1:3.11.232-1.git.1.d1e3501.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.src",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-clients-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-clients-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-clients-redistributable-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.src",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.src",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-docker-excluder-0:3.11.232-1.git.0.a5bc32f.el7.noarch",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.232-1.git.1.e5150dd.el7.src",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.232-1.git.1.e5150dd.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-excluder-0:3.11.232-1.git.0.a5bc32f.el7.noarch",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-hyperkube-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-hyperkube-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-hypershift-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-hypershift-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-master-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-master-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.src",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-node-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-node-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.src",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-pod-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-pod-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-sdn-ovs-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-sdn-ovs-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.src",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-template-service-broker-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-template-service-broker-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-tests-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-tests-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.src",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.src",
          "7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:cri-tools-debuginfo-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:cri-tools-debuginfo-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:golang-github-cpuguy83-go-md2man-0:1.0.7-1.el7.src",
          "7Server-RH7-RHOSE-3.11:golang-github-cpuguy83-go-md2man-0:1.0.7-1.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.src",
          "7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:golang-github-prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.src",
          "7Server-RH7-RHOSE-3.11:golang-github-prometheus-node_exporter-0:3.11.232-1.git.1.0216923.el7.src",
          "7Server-RH7-RHOSE-3.11:golang-github-prometheus-prometheus-0:3.11.232-1.git.1.3c936ee.el7.src",
          "7Server-RH7-RHOSE-3.11:jenkins-2-plugins-0:3.11.1591354111-1.el7.noarch",
          "7Server-RH7-RHOSE-3.11:jenkins-2-plugins-0:3.11.1591354111-1.el7.src",
          "7Server-RH7-RHOSE-3.11:openshift-ansible-0:3.11.232-1.git.0.f0f2213.el7.noarch",
          "7Server-RH7-RHOSE-3.11:openshift-ansible-0:3.11.232-1.git.0.f0f2213.el7.src",
          "7Server-RH7-RHOSE-3.11:openshift-ansible-docs-0:3.11.232-1.git.0.f0f2213.el7.noarch",
          "7Server-RH7-RHOSE-3.11:openshift-ansible-playbooks-0:3.11.232-1.git.0.f0f2213.el7.noarch",
          "7Server-RH7-RHOSE-3.11:openshift-ansible-roles-0:3.11.232-1.git.0.f0f2213.el7.noarch",
          "7Server-RH7-RHOSE-3.11:openshift-ansible-test-0:3.11.232-1.git.0.f0f2213.el7.noarch",
          "7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.src",
          "7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.src",
          "7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:openshift-kuryr-0:3.11.232-1.git.1.d2cedd4.el7.src",
          "7Server-RH7-RHOSE-3.11:openshift-kuryr-cni-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
          "7Server-RH7-RHOSE-3.11:openshift-kuryr-common-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
          "7Server-RH7-RHOSE-3.11:openshift-kuryr-controller-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
          "7Server-RH7-RHOSE-3.11:prometheus-0:3.11.232-1.git.1.3c936ee.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:prometheus-0:3.11.232-1.git.1.3c936ee.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:prometheus-node-exporter-0:3.11.232-1.git.1.0216923.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:prometheus-node-exporter-0:3.11.232-1.git.1.0216923.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:python-openshift-1:0.6.4-2.el7.src",
          "7Server-RH7-RHOSE-3.11:python2-kuryr-kubernetes-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
          "7Server-RH7-RHOSE-3.11:python2-openshift-1:0.6.4-2.el7.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2020-2162"
        },
        {
          "category": "external",
          "summary": "RHBZ#1819211",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1819211"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2020-2162",
          "url": "https://www.cve.org/CVERecord?id=CVE-2020-2162"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2162",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2162"
        },
        {
          "category": "external",
          "summary": "https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1793",
          "url": "https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1793"
        }
      ],
      "release_date": "2020-03-25T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2020-06-17T20:23:07+00:00",
          "details": "Before applying this update, ensure all previously released errata relevant\nto your system is applied.\n\nSee the following documentation, which will be updated shortly for release\n3.11.232, for important instructions on how to upgrade your cluster and fully\napply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/3.11/release_notes/ocp_3_11_release_notes.html\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258.",
          "product_ids": [
            "7Server-RH7-RHOSE-3.11:jenkins-0:2.222.1.1591351669-1.el7.noarch",
            "7Server-RH7-RHOSE-3.11:jenkins-0:2.222.1.1591351669-1.el7.src"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHBA-2020:2477"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 5.4,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-svcat-1:3.11.232-1.git.1.d1e3501.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-svcat-1:3.11.232-1.git.1.d1e3501.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-clients-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-clients-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-clients-redistributable-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-docker-excluder-0:3.11.232-1.git.0.a5bc32f.el7.noarch",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.232-1.git.1.e5150dd.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.232-1.git.1.e5150dd.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-excluder-0:3.11.232-1.git.0.a5bc32f.el7.noarch",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-hyperkube-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-hyperkube-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-hypershift-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-hypershift-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-master-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-master-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-node-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-node-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-pod-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-pod-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-sdn-ovs-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-sdn-ovs-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-template-service-broker-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-template-service-broker-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-tests-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-tests-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.src",
            "7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:cri-tools-debuginfo-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:cri-tools-debuginfo-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:golang-github-cpuguy83-go-md2man-0:1.0.7-1.el7.src",
            "7Server-RH7-RHOSE-3.11:golang-github-cpuguy83-go-md2man-0:1.0.7-1.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.src",
            "7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:golang-github-prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.src",
            "7Server-RH7-RHOSE-3.11:golang-github-prometheus-node_exporter-0:3.11.232-1.git.1.0216923.el7.src",
            "7Server-RH7-RHOSE-3.11:golang-github-prometheus-prometheus-0:3.11.232-1.git.1.3c936ee.el7.src",
            "7Server-RH7-RHOSE-3.11:jenkins-0:2.222.1.1591351669-1.el7.noarch",
            "7Server-RH7-RHOSE-3.11:jenkins-0:2.222.1.1591351669-1.el7.src",
            "7Server-RH7-RHOSE-3.11:jenkins-2-plugins-0:3.11.1591354111-1.el7.noarch",
            "7Server-RH7-RHOSE-3.11:jenkins-2-plugins-0:3.11.1591354111-1.el7.src",
            "7Server-RH7-RHOSE-3.11:openshift-ansible-0:3.11.232-1.git.0.f0f2213.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-ansible-0:3.11.232-1.git.0.f0f2213.el7.src",
            "7Server-RH7-RHOSE-3.11:openshift-ansible-docs-0:3.11.232-1.git.0.f0f2213.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-ansible-playbooks-0:3.11.232-1.git.0.f0f2213.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-ansible-roles-0:3.11.232-1.git.0.f0f2213.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-ansible-test-0:3.11.232-1.git.0.f0f2213.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.src",
            "7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.src",
            "7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:openshift-kuryr-0:3.11.232-1.git.1.d2cedd4.el7.src",
            "7Server-RH7-RHOSE-3.11:openshift-kuryr-cni-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-kuryr-common-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-kuryr-controller-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
            "7Server-RH7-RHOSE-3.11:prometheus-0:3.11.232-1.git.1.3c936ee.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:prometheus-0:3.11.232-1.git.1.3c936ee.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:prometheus-node-exporter-0:3.11.232-1.git.1.0216923.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:prometheus-node-exporter-0:3.11.232-1.git.1.0216923.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:python-openshift-1:0.6.4-2.el7.src",
            "7Server-RH7-RHOSE-3.11:python2-kuryr-kubernetes-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
            "7Server-RH7-RHOSE-3.11:python2-openshift-1:0.6.4-2.el7.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "jenkins: Content-Security-Policy headers for files uploaded leads to XSS"
    },
    {
      "cve": "CVE-2020-2163",
      "cwe": {
        "id": "CWE-79",
        "name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
      },
      "discovery_date": "2020-03-25T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-svcat-1:3.11.232-1.git.1.d1e3501.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-svcat-1:3.11.232-1.git.1.d1e3501.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-clients-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-clients-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-clients-redistributable-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-docker-excluder-0:3.11.232-1.git.0.a5bc32f.el7.noarch",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.232-1.git.1.e5150dd.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.232-1.git.1.e5150dd.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-excluder-0:3.11.232-1.git.0.a5bc32f.el7.noarch",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-hyperkube-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-hyperkube-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-hypershift-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-hypershift-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-master-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-master-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-node-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-node-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-pod-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-pod-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-sdn-ovs-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-sdn-ovs-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-template-service-broker-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-template-service-broker-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-tests-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-tests-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.src",
            "7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:cri-tools-debuginfo-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:cri-tools-debuginfo-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:golang-github-cpuguy83-go-md2man-0:1.0.7-1.el7.src",
            "7Server-RH7-RHOSE-3.11:golang-github-cpuguy83-go-md2man-0:1.0.7-1.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.src",
            "7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:golang-github-prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.src",
            "7Server-RH7-RHOSE-3.11:golang-github-prometheus-node_exporter-0:3.11.232-1.git.1.0216923.el7.src",
            "7Server-RH7-RHOSE-3.11:golang-github-prometheus-prometheus-0:3.11.232-1.git.1.3c936ee.el7.src",
            "7Server-RH7-RHOSE-3.11:jenkins-2-plugins-0:3.11.1591354111-1.el7.noarch",
            "7Server-RH7-RHOSE-3.11:jenkins-2-plugins-0:3.11.1591354111-1.el7.src",
            "7Server-RH7-RHOSE-3.11:openshift-ansible-0:3.11.232-1.git.0.f0f2213.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-ansible-0:3.11.232-1.git.0.f0f2213.el7.src",
            "7Server-RH7-RHOSE-3.11:openshift-ansible-docs-0:3.11.232-1.git.0.f0f2213.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-ansible-playbooks-0:3.11.232-1.git.0.f0f2213.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-ansible-roles-0:3.11.232-1.git.0.f0f2213.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-ansible-test-0:3.11.232-1.git.0.f0f2213.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.src",
            "7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.src",
            "7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:openshift-kuryr-0:3.11.232-1.git.1.d2cedd4.el7.src",
            "7Server-RH7-RHOSE-3.11:openshift-kuryr-cni-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-kuryr-common-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-kuryr-controller-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
            "7Server-RH7-RHOSE-3.11:prometheus-0:3.11.232-1.git.1.3c936ee.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:prometheus-0:3.11.232-1.git.1.3c936ee.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:prometheus-node-exporter-0:3.11.232-1.git.1.0216923.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:prometheus-node-exporter-0:3.11.232-1.git.1.0216923.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:python-openshift-1:0.6.4-2.el7.src",
            "7Server-RH7-RHOSE-3.11:python2-kuryr-kubernetes-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
            "7Server-RH7-RHOSE-3.11:python2-openshift-1:0.6.4-2.el7.noarch"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1819222"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Jenkins 2.227 and earlier, LTS 2.204.5 and earlier improperly processes HTML content of list view column headers, resulting in a stored XSS vulnerability exploitable by users able to control column headers.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "jenkins: improperly processes HTML content of list leads to XSS",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-RH7-RHOSE-3.11:jenkins-0:2.222.1.1591351669-1.el7.noarch",
          "7Server-RH7-RHOSE-3.11:jenkins-0:2.222.1.1591351669-1.el7.src"
        ],
        "known_not_affected": [
          "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.src",
          "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-svcat-1:3.11.232-1.git.1.d1e3501.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-svcat-1:3.11.232-1.git.1.d1e3501.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.src",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-clients-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-clients-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-clients-redistributable-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.src",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.src",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-docker-excluder-0:3.11.232-1.git.0.a5bc32f.el7.noarch",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.232-1.git.1.e5150dd.el7.src",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.232-1.git.1.e5150dd.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-excluder-0:3.11.232-1.git.0.a5bc32f.el7.noarch",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-hyperkube-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-hyperkube-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-hypershift-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-hypershift-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-master-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-master-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.src",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-node-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-node-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.src",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-pod-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-pod-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-sdn-ovs-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-sdn-ovs-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.src",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-template-service-broker-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-template-service-broker-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-tests-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-tests-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.src",
          "7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.src",
          "7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:cri-tools-debuginfo-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:cri-tools-debuginfo-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:golang-github-cpuguy83-go-md2man-0:1.0.7-1.el7.src",
          "7Server-RH7-RHOSE-3.11:golang-github-cpuguy83-go-md2man-0:1.0.7-1.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.src",
          "7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:golang-github-prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.src",
          "7Server-RH7-RHOSE-3.11:golang-github-prometheus-node_exporter-0:3.11.232-1.git.1.0216923.el7.src",
          "7Server-RH7-RHOSE-3.11:golang-github-prometheus-prometheus-0:3.11.232-1.git.1.3c936ee.el7.src",
          "7Server-RH7-RHOSE-3.11:jenkins-2-plugins-0:3.11.1591354111-1.el7.noarch",
          "7Server-RH7-RHOSE-3.11:jenkins-2-plugins-0:3.11.1591354111-1.el7.src",
          "7Server-RH7-RHOSE-3.11:openshift-ansible-0:3.11.232-1.git.0.f0f2213.el7.noarch",
          "7Server-RH7-RHOSE-3.11:openshift-ansible-0:3.11.232-1.git.0.f0f2213.el7.src",
          "7Server-RH7-RHOSE-3.11:openshift-ansible-docs-0:3.11.232-1.git.0.f0f2213.el7.noarch",
          "7Server-RH7-RHOSE-3.11:openshift-ansible-playbooks-0:3.11.232-1.git.0.f0f2213.el7.noarch",
          "7Server-RH7-RHOSE-3.11:openshift-ansible-roles-0:3.11.232-1.git.0.f0f2213.el7.noarch",
          "7Server-RH7-RHOSE-3.11:openshift-ansible-test-0:3.11.232-1.git.0.f0f2213.el7.noarch",
          "7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.src",
          "7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.src",
          "7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:openshift-kuryr-0:3.11.232-1.git.1.d2cedd4.el7.src",
          "7Server-RH7-RHOSE-3.11:openshift-kuryr-cni-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
          "7Server-RH7-RHOSE-3.11:openshift-kuryr-common-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
          "7Server-RH7-RHOSE-3.11:openshift-kuryr-controller-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
          "7Server-RH7-RHOSE-3.11:prometheus-0:3.11.232-1.git.1.3c936ee.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:prometheus-0:3.11.232-1.git.1.3c936ee.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:prometheus-node-exporter-0:3.11.232-1.git.1.0216923.el7.ppc64le",
          "7Server-RH7-RHOSE-3.11:prometheus-node-exporter-0:3.11.232-1.git.1.0216923.el7.x86_64",
          "7Server-RH7-RHOSE-3.11:python-openshift-1:0.6.4-2.el7.src",
          "7Server-RH7-RHOSE-3.11:python2-kuryr-kubernetes-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
          "7Server-RH7-RHOSE-3.11:python2-openshift-1:0.6.4-2.el7.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2020-2163"
        },
        {
          "category": "external",
          "summary": "RHBZ#1819222",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1819222"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2020-2163",
          "url": "https://www.cve.org/CVERecord?id=CVE-2020-2163"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2163",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2163"
        },
        {
          "category": "external",
          "summary": "https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1796",
          "url": "https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1796"
        }
      ],
      "release_date": "2020-03-26T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2020-06-17T20:23:07+00:00",
          "details": "Before applying this update, ensure all previously released errata relevant\nto your system is applied.\n\nSee the following documentation, which will be updated shortly for release\n3.11.232, for important instructions on how to upgrade your cluster and fully\napply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/3.11/release_notes/ocp_3_11_release_notes.html\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at\nhttps://access.redhat.com/articles/11258.",
          "product_ids": [
            "7Server-RH7-RHOSE-3.11:jenkins-0:2.222.1.1591351669-1.el7.noarch",
            "7Server-RH7-RHOSE-3.11:jenkins-0:2.222.1.1591351669-1.el7.src"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHBA-2020:2477"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 5.4,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.232-1.git.1.d1e3501.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-svcat-1:3.11.232-1.git.1.d1e3501.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-svcat-1:3.11.232-1.git.1.d1e3501.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-clients-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-clients-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-clients-redistributable-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.232-1.git.1.e7433c6.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.232-1.git.1.71361e4.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-docker-excluder-0:3.11.232-1.git.0.a5bc32f.el7.noarch",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.232-1.git.1.e5150dd.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.232-1.git.1.e5150dd.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-excluder-0:3.11.232-1.git.0.a5bc32f.el7.noarch",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-hyperkube-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-hyperkube-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-hypershift-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-hypershift-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-master-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-master-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.232-1.git.1.8c5f5b4.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-node-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-node-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.232-1.git.1.d41afaf.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-pod-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-pod-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-sdn-ovs-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-sdn-ovs-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.232-1.git.1.424e270.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-template-service-broker-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-template-service-broker-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-tests-0:3.11.232-1.git.0.a5bc32f.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-tests-0:3.11.232-1.git.0.a5bc32f.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.src",
            "7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.232-1.git.1.0f92c9e.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.src",
            "7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:cri-tools-debuginfo-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:cri-tools-debuginfo-0:1.11.1-3.rhaos3.11.gitedabfb5.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:golang-github-cpuguy83-go-md2man-0:1.0.7-1.el7.src",
            "7Server-RH7-RHOSE-3.11:golang-github-cpuguy83-go-md2man-0:1.0.7-1.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.src",
            "7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.232-1.git.1.db200ae.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:golang-github-prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.src",
            "7Server-RH7-RHOSE-3.11:golang-github-prometheus-node_exporter-0:3.11.232-1.git.1.0216923.el7.src",
            "7Server-RH7-RHOSE-3.11:golang-github-prometheus-prometheus-0:3.11.232-1.git.1.3c936ee.el7.src",
            "7Server-RH7-RHOSE-3.11:jenkins-0:2.222.1.1591351669-1.el7.noarch",
            "7Server-RH7-RHOSE-3.11:jenkins-0:2.222.1.1591351669-1.el7.src",
            "7Server-RH7-RHOSE-3.11:jenkins-2-plugins-0:3.11.1591354111-1.el7.noarch",
            "7Server-RH7-RHOSE-3.11:jenkins-2-plugins-0:3.11.1591354111-1.el7.src",
            "7Server-RH7-RHOSE-3.11:openshift-ansible-0:3.11.232-1.git.0.f0f2213.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-ansible-0:3.11.232-1.git.0.f0f2213.el7.src",
            "7Server-RH7-RHOSE-3.11:openshift-ansible-docs-0:3.11.232-1.git.0.f0f2213.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-ansible-playbooks-0:3.11.232-1.git.0.f0f2213.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-ansible-roles-0:3.11.232-1.git.0.f0f2213.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-ansible-test-0:3.11.232-1.git.0.f0f2213.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.src",
            "7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.232-1.git.1.2756a13.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.src",
            "7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.232-1.git.1.2e0c082.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:openshift-kuryr-0:3.11.232-1.git.1.d2cedd4.el7.src",
            "7Server-RH7-RHOSE-3.11:openshift-kuryr-cni-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-kuryr-common-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
            "7Server-RH7-RHOSE-3.11:openshift-kuryr-controller-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
            "7Server-RH7-RHOSE-3.11:prometheus-0:3.11.232-1.git.1.3c936ee.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:prometheus-0:3.11.232-1.git.1.3c936ee.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:prometheus-alertmanager-0:3.11.232-1.git.1.abfb991.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:prometheus-node-exporter-0:3.11.232-1.git.1.0216923.el7.ppc64le",
            "7Server-RH7-RHOSE-3.11:prometheus-node-exporter-0:3.11.232-1.git.1.0216923.el7.x86_64",
            "7Server-RH7-RHOSE-3.11:python-openshift-1:0.6.4-2.el7.src",
            "7Server-RH7-RHOSE-3.11:python2-kuryr-kubernetes-0:3.11.232-1.git.1.d2cedd4.el7.noarch",
            "7Server-RH7-RHOSE-3.11:python2-openshift-1:0.6.4-2.el7.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "jenkins: improperly processes HTML content of list leads to XSS"
    }
  ]
}

RHBA-2020_2435

Vulnerability from csaf_redhat - Published: 2020-06-17 19:44 - Updated: 2024-11-22 15:20

Summary

Red Hat Bug Fix Advisory: OpenShift Container Platform 4.3.25 packages update

Severity

Important

Notes

Topic: Red Hat OpenShift Container Platform release 4.3.25 is now available with updates to packages and images that fix several bugs.

CVE-2020-2160

Jenkins 2.227 and earlier, LTS 2.204.5 and earlier uses different representations of request URL paths, which allows attackers to craft URLs that allow bypassing CSRF protection of any target URL.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-352 - Cross-Site Request Forgery (CSRF)

Affected products

Fixed 95 products

Product	Version	Remediation
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-ansible-test-0:4.3.25-202006060952.git.1.1253fde.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-kuryr-0:4.3.25-202006081518.git.1.240b401.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-kuryr-cni-0:4.3.25-202006081518.git.1.240b401.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-kuryr-common-0:4.3.25-202006081518.git.1.240b401.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-kuryr-controller-0:4.3.25-202006081518.git.1.240b401.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:python3-kuryr-kubernetes-0:4.3.25-202006081518.git.1.240b401.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-base-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-base-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cmsfs-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cmsfs-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cmsfs-fuse-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cmsfs-fuse-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cpacfstatsd-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cpacfstatsd-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cpuplugd-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cpuplugd-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-debugsource-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-devel-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-hmcdrvfs-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-hmcdrvfs-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-iucvterm-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-iucvterm-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-mon_statd-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-mon_statd-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-osasnmpd-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-osasnmpd-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-zdsfs-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-zdsfs-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-ziomon-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-ziomon-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix

Threats

Impact Important

CVE-2020-2161

5.4 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Affected products

Fixed 95 products

Product	Version	Remediation
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-ansible-test-0:4.3.25-202006060952.git.1.1253fde.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-kuryr-0:4.3.25-202006081518.git.1.240b401.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-kuryr-cni-0:4.3.25-202006081518.git.1.240b401.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-kuryr-common-0:4.3.25-202006081518.git.1.240b401.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-kuryr-controller-0:4.3.25-202006081518.git.1.240b401.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:python3-kuryr-kubernetes-0:4.3.25-202006081518.git.1.240b401.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-base-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-base-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cmsfs-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cmsfs-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cmsfs-fuse-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cmsfs-fuse-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cpacfstatsd-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cpacfstatsd-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cpuplugd-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cpuplugd-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-debugsource-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-devel-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-hmcdrvfs-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-hmcdrvfs-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-iucvterm-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-iucvterm-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-mon_statd-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-mon_statd-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-osasnmpd-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-osasnmpd-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-zdsfs-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-zdsfs-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-ziomon-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-ziomon-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2020-2162

Jenkins 2.227 and earlier, LTS 2.204.5 and earlier does not set Content-Security-Policy headers for files uploaded as file parameters to a build, resulting in a stored XSS vulnerability.

5.4 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Affected products

Fixed 95 products

Product	Version	Remediation
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-ansible-test-0:4.3.25-202006060952.git.1.1253fde.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-kuryr-0:4.3.25-202006081518.git.1.240b401.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-kuryr-cni-0:4.3.25-202006081518.git.1.240b401.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-kuryr-common-0:4.3.25-202006081518.git.1.240b401.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-kuryr-controller-0:4.3.25-202006081518.git.1.240b401.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:python3-kuryr-kubernetes-0:4.3.25-202006081518.git.1.240b401.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-base-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-base-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cmsfs-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cmsfs-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cmsfs-fuse-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cmsfs-fuse-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cpacfstatsd-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cpacfstatsd-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cpuplugd-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cpuplugd-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-debugsource-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-devel-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-hmcdrvfs-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-hmcdrvfs-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-iucvterm-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-iucvterm-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-mon_statd-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-mon_statd-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-osasnmpd-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-osasnmpd-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-zdsfs-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-zdsfs-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-ziomon-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-ziomon-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2020-2163

5.4 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Affected products

Fixed 95 products

Product	Version	Remediation
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-ansible-test-0:4.3.25-202006060952.git.1.1253fde.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.ppc64le	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.s390x	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-kuryr-0:4.3.25-202006081518.git.1.240b401.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-kuryr-cni-0:4.3.25-202006081518.git.1.240b401.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-kuryr-common-0:4.3.25-202006081518.git.1.240b401.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:openshift-kuryr-controller-0:4.3.25-202006081518.git.1.240b401.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:python3-kuryr-kubernetes-0:4.3.25-202006081518.git.1.240b401.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-base-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-base-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cmsfs-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cmsfs-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cmsfs-fuse-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cmsfs-fuse-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cpacfstatsd-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cpacfstatsd-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cpuplugd-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-cpuplugd-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-debugsource-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-devel-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-hmcdrvfs-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-hmcdrvfs-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-iucvterm-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-iucvterm-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-mon_statd-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-mon_statd-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-osasnmpd-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-osasnmpd-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-zdsfs-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-zdsfs-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-ziomon-2:2.6.0-23.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.3:s390utils-ziomon-debuginfo-2:2.6.0-23.el8.s390x	—	Vendor Fix fix

Threats

Impact Moderate

References

23 references

URL	Category
https://access.redhat.com/errata/RHBA-2020:2435	self
https://bugzilla.redhat.com/show_bug.cgi?id=1843457	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2020-2160	self
https://bugzilla.redhat.com/show_bug.cgi?id=1819190	external
https://www.cve.org/CVERecord?id=CVE-2020-2160	external
https://nvd.nist.gov/vuln/detail/CVE-2020-2160	external
https://jenkins.io/security/advisory/2020-03-25/#…	external
https://access.redhat.com/security/cve/CVE-2020-2161	self
https://bugzilla.redhat.com/show_bug.cgi?id=1819198	external
https://www.cve.org/CVERecord?id=CVE-2020-2161	external
https://nvd.nist.gov/vuln/detail/CVE-2020-2161	external
https://jenkins.io/security/advisory/2020-03-25/#…	external
https://access.redhat.com/security/cve/CVE-2020-2162	self
https://bugzilla.redhat.com/show_bug.cgi?id=1819211	external
https://www.cve.org/CVERecord?id=CVE-2020-2162	external
https://nvd.nist.gov/vuln/detail/CVE-2020-2162	external
https://jenkins.io/security/advisory/2020-03-25/#…	external
https://access.redhat.com/security/cve/CVE-2020-2163	self
https://bugzilla.redhat.com/show_bug.cgi?id=1819222	external
https://www.cve.org/CVERecord?id=CVE-2020-2163	external
https://nvd.nist.gov/vuln/detail/CVE-2020-2163	external
https://jenkins.io/security/advisory/2020-03-25/#…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Red Hat OpenShift Container Platform release 4.3.25 is now available with\nupdates to packages and images that fix several bugs.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Red Hat OpenShift Container Platform is Red Hat\u0027s cloud computing\nKubernetes application platform solution designed for on-premise or private\ncloud deployments.\n\nThis advisory contains the RPM packages for Red Hat OpenShift Container\nPlatform 4.3.25. See the following advisory for the container images for\nthis release:\n\nhttps://access.redhat.com/errata/RHBA-2020:2436\n\nAll OpenShift Container Platform 4.3 users are advised to upgrade to these\nupdated packages and images.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHBA-2020:2435",
        "url": "https://access.redhat.com/errata/RHBA-2020:2435"
      },
      {
        "category": "external",
        "summary": "1843457",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1843457"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhba-2020_2435.json"
      }
    ],
    "title": "Red Hat Bug Fix Advisory: OpenShift Container Platform 4.3.25 packages update",
    "tracking": {
      "current_release_date": "2024-11-22T15:20:14+00:00",
      "generator": {
        "date": "2024-11-22T15:20:14+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.2.1"
        }
      },
      "id": "RHBA-2020:2435",
      "initial_release_date": "2020-06-17T19:44:05+00:00",
      "revision_history": [
        {
          "date": "2020-06-17T19:44:05+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2020-06-17T19:44:05+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2024-11-22T15:20:14+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat OpenShift Container Platform 4.3",
                "product": {
                  "name": "Red Hat OpenShift Container Platform 4.3",
                  "product_id": "8Base-RHOSE-4.3",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:4.3::el8"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat OpenShift Container Platform 4.3",
                "product": {
                  "name": "Red Hat OpenShift Container Platform 4.3",
                  "product_id": "7Server-RH7-RHOSE-4.3",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:4.3::el7"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat OpenShift Enterprise"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "s390utils-2:2.6.0-23.el8.s390x",
                "product": {
                  "name": "s390utils-2:2.6.0-23.el8.s390x",
                  "product_id": "s390utils-2:2.6.0-23.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils@2.6.0-23.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "s390utils-base-2:2.6.0-23.el8.s390x",
                "product": {
                  "name": "s390utils-base-2:2.6.0-23.el8.s390x",
                  "product_id": "s390utils-base-2:2.6.0-23.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils-base@2.6.0-23.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "s390utils-cmsfs-2:2.6.0-23.el8.s390x",
                "product": {
                  "name": "s390utils-cmsfs-2:2.6.0-23.el8.s390x",
                  "product_id": "s390utils-cmsfs-2:2.6.0-23.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils-cmsfs@2.6.0-23.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "s390utils-cmsfs-fuse-2:2.6.0-23.el8.s390x",
                "product": {
                  "name": "s390utils-cmsfs-fuse-2:2.6.0-23.el8.s390x",
                  "product_id": "s390utils-cmsfs-fuse-2:2.6.0-23.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils-cmsfs-fuse@2.6.0-23.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "s390utils-cpacfstatsd-2:2.6.0-23.el8.s390x",
                "product": {
                  "name": "s390utils-cpacfstatsd-2:2.6.0-23.el8.s390x",
                  "product_id": "s390utils-cpacfstatsd-2:2.6.0-23.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils-cpacfstatsd@2.6.0-23.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "s390utils-cpuplugd-2:2.6.0-23.el8.s390x",
                "product": {
                  "name": "s390utils-cpuplugd-2:2.6.0-23.el8.s390x",
                  "product_id": "s390utils-cpuplugd-2:2.6.0-23.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils-cpuplugd@2.6.0-23.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "s390utils-devel-2:2.6.0-23.el8.s390x",
                "product": {
                  "name": "s390utils-devel-2:2.6.0-23.el8.s390x",
                  "product_id": "s390utils-devel-2:2.6.0-23.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils-devel@2.6.0-23.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "s390utils-hmcdrvfs-2:2.6.0-23.el8.s390x",
                "product": {
                  "name": "s390utils-hmcdrvfs-2:2.6.0-23.el8.s390x",
                  "product_id": "s390utils-hmcdrvfs-2:2.6.0-23.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils-hmcdrvfs@2.6.0-23.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "s390utils-iucvterm-2:2.6.0-23.el8.s390x",
                "product": {
                  "name": "s390utils-iucvterm-2:2.6.0-23.el8.s390x",
                  "product_id": "s390utils-iucvterm-2:2.6.0-23.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils-iucvterm@2.6.0-23.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "s390utils-mon_statd-2:2.6.0-23.el8.s390x",
                "product": {
                  "name": "s390utils-mon_statd-2:2.6.0-23.el8.s390x",
                  "product_id": "s390utils-mon_statd-2:2.6.0-23.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils-mon_statd@2.6.0-23.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "s390utils-osasnmpd-2:2.6.0-23.el8.s390x",
                "product": {
                  "name": "s390utils-osasnmpd-2:2.6.0-23.el8.s390x",
                  "product_id": "s390utils-osasnmpd-2:2.6.0-23.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils-osasnmpd@2.6.0-23.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "s390utils-zdsfs-2:2.6.0-23.el8.s390x",
                "product": {
                  "name": "s390utils-zdsfs-2:2.6.0-23.el8.s390x",
                  "product_id": "s390utils-zdsfs-2:2.6.0-23.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils-zdsfs@2.6.0-23.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "s390utils-ziomon-2:2.6.0-23.el8.s390x",
                "product": {
                  "name": "s390utils-ziomon-2:2.6.0-23.el8.s390x",
                  "product_id": "s390utils-ziomon-2:2.6.0-23.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils-ziomon@2.6.0-23.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "s390utils-debugsource-2:2.6.0-23.el8.s390x",
                "product": {
                  "name": "s390utils-debugsource-2:2.6.0-23.el8.s390x",
                  "product_id": "s390utils-debugsource-2:2.6.0-23.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils-debugsource@2.6.0-23.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "s390utils-base-debuginfo-2:2.6.0-23.el8.s390x",
                "product": {
                  "name": "s390utils-base-debuginfo-2:2.6.0-23.el8.s390x",
                  "product_id": "s390utils-base-debuginfo-2:2.6.0-23.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils-base-debuginfo@2.6.0-23.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "s390utils-cmsfs-debuginfo-2:2.6.0-23.el8.s390x",
                "product": {
                  "name": "s390utils-cmsfs-debuginfo-2:2.6.0-23.el8.s390x",
                  "product_id": "s390utils-cmsfs-debuginfo-2:2.6.0-23.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils-cmsfs-debuginfo@2.6.0-23.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "s390utils-cmsfs-fuse-debuginfo-2:2.6.0-23.el8.s390x",
                "product": {
                  "name": "s390utils-cmsfs-fuse-debuginfo-2:2.6.0-23.el8.s390x",
                  "product_id": "s390utils-cmsfs-fuse-debuginfo-2:2.6.0-23.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils-cmsfs-fuse-debuginfo@2.6.0-23.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "s390utils-cpacfstatsd-debuginfo-2:2.6.0-23.el8.s390x",
                "product": {
                  "name": "s390utils-cpacfstatsd-debuginfo-2:2.6.0-23.el8.s390x",
                  "product_id": "s390utils-cpacfstatsd-debuginfo-2:2.6.0-23.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils-cpacfstatsd-debuginfo@2.6.0-23.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "s390utils-cpuplugd-debuginfo-2:2.6.0-23.el8.s390x",
                "product": {
                  "name": "s390utils-cpuplugd-debuginfo-2:2.6.0-23.el8.s390x",
                  "product_id": "s390utils-cpuplugd-debuginfo-2:2.6.0-23.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils-cpuplugd-debuginfo@2.6.0-23.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "s390utils-debuginfo-2:2.6.0-23.el8.s390x",
                "product": {
                  "name": "s390utils-debuginfo-2:2.6.0-23.el8.s390x",
                  "product_id": "s390utils-debuginfo-2:2.6.0-23.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils-debuginfo@2.6.0-23.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "s390utils-hmcdrvfs-debuginfo-2:2.6.0-23.el8.s390x",
                "product": {
                  "name": "s390utils-hmcdrvfs-debuginfo-2:2.6.0-23.el8.s390x",
                  "product_id": "s390utils-hmcdrvfs-debuginfo-2:2.6.0-23.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils-hmcdrvfs-debuginfo@2.6.0-23.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "s390utils-iucvterm-debuginfo-2:2.6.0-23.el8.s390x",
                "product": {
                  "name": "s390utils-iucvterm-debuginfo-2:2.6.0-23.el8.s390x",
                  "product_id": "s390utils-iucvterm-debuginfo-2:2.6.0-23.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils-iucvterm-debuginfo@2.6.0-23.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "s390utils-mon_statd-debuginfo-2:2.6.0-23.el8.s390x",
                "product": {
                  "name": "s390utils-mon_statd-debuginfo-2:2.6.0-23.el8.s390x",
                  "product_id": "s390utils-mon_statd-debuginfo-2:2.6.0-23.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils-mon_statd-debuginfo@2.6.0-23.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "s390utils-osasnmpd-debuginfo-2:2.6.0-23.el8.s390x",
                "product": {
                  "name": "s390utils-osasnmpd-debuginfo-2:2.6.0-23.el8.s390x",
                  "product_id": "s390utils-osasnmpd-debuginfo-2:2.6.0-23.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils-osasnmpd-debuginfo@2.6.0-23.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "s390utils-zdsfs-debuginfo-2:2.6.0-23.el8.s390x",
                "product": {
                  "name": "s390utils-zdsfs-debuginfo-2:2.6.0-23.el8.s390x",
                  "product_id": "s390utils-zdsfs-debuginfo-2:2.6.0-23.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils-zdsfs-debuginfo@2.6.0-23.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "s390utils-ziomon-debuginfo-2:2.6.0-23.el8.s390x",
                "product": {
                  "name": "s390utils-ziomon-debuginfo-2:2.6.0-23.el8.s390x",
                  "product_id": "s390utils-ziomon-debuginfo-2:2.6.0-23.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils-ziomon-debuginfo@2.6.0-23.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
                "product": {
                  "name": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
                  "product_id": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o@1.16.6-15.dev.rhaos4.3.gitebc053b.el8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
                "product": {
                  "name": "cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
                  "product_id": "cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debugsource@1.16.6-15.dev.rhaos4.3.gitebc053b.el8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
                "product": {
                  "name": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
                  "product_id": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debuginfo@1.16.6-15.dev.rhaos4.3.gitebc053b.el8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "conmon-2:2.0.17-1.rhaos4.3.el8.s390x",
                "product": {
                  "name": "conmon-2:2.0.17-1.rhaos4.3.el8.s390x",
                  "product_id": "conmon-2:2.0.17-1.rhaos4.3.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/conmon@2.0.17-1.rhaos4.3.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.s390x",
                "product": {
                  "name": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.s390x",
                  "product_id": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-hyperkube@4.3.25-202006060952.git.1.96c30f6.el8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.s390x",
                "product": {
                  "name": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.s390x",
                  "product_id": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-clients@4.3.25-202006060952.git.1.fd93102.el8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.s390x",
                "product": {
                  "name": "machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.s390x",
                  "product_id": "machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/machine-config-daemon@4.3.25-202006081518.git.1.478b31a.el8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
                "product": {
                  "name": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
                  "product_id": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o@1.16.6-15.dev.rhaos4.3.gitebc053b.el7?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
                "product": {
                  "name": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
                  "product_id": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debuginfo@1.16.6-15.dev.rhaos4.3.gitebc053b.el7?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "conmon-2:2.0.17-1.rhaos4.3.el7.s390x",
                "product": {
                  "name": "conmon-2:2.0.17-1.rhaos4.3.el7.s390x",
                  "product_id": "conmon-2:2.0.17-1.rhaos4.3.el7.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/conmon@2.0.17-1.rhaos4.3.el7?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.s390x",
                "product": {
                  "name": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.s390x",
                  "product_id": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-hyperkube@4.3.25-202006060952.git.1.96c30f6.el7?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.s390x",
                "product": {
                  "name": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.s390x",
                  "product_id": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-clients@4.3.25-202006060952.git.1.fd93102.el7?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
                "product": {
                  "name": "atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
                  "product_id": "atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-enterprise-service-catalog@4.3.25-202006081518.git.1.52b3a66.el7?arch=s390x\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
                "product": {
                  "name": "atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
                  "product_id": "atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-enterprise-service-catalog-svcat@4.3.25-202006081518.git.1.52b3a66.el7?arch=s390x\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.s390x",
                "product": {
                  "name": "atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.s390x",
                  "product_id": "atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-service-idler@4.3.25-202006081518.git.1.79365c5.el7?arch=s390x"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "s390utils-2:2.6.0-23.el8.src",
                "product": {
                  "name": "s390utils-2:2.6.0-23.el8.src",
                  "product_id": "s390utils-2:2.6.0-23.el8.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/s390utils@2.6.0-23.el8?arch=src\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.src",
                "product": {
                  "name": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.src",
                  "product_id": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o@1.16.6-15.dev.rhaos4.3.gitebc053b.el8?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "conmon-2:2.0.17-1.rhaos4.3.el8.src",
                "product": {
                  "name": "conmon-2:2.0.17-1.rhaos4.3.el8.src",
                  "product_id": "conmon-2:2.0.17-1.rhaos4.3.el8.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/conmon@2.0.17-1.rhaos4.3.el8?arch=src\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-0:4.3.25-202006060952.git.1.96c30f6.el8.src",
                "product": {
                  "name": "openshift-0:4.3.25-202006060952.git.1.96c30f6.el8.src",
                  "product_id": "openshift-0:4.3.25-202006060952.git.1.96c30f6.el8.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift@4.3.25-202006060952.git.1.96c30f6.el8?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.src",
                "product": {
                  "name": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.src",
                  "product_id": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-clients@4.3.25-202006060952.git.1.fd93102.el8?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.src",
                "product": {
                  "name": "machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.src",
                  "product_id": "machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/machine-config-daemon@4.3.25-202006081518.git.1.478b31a.el8?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-kuryr-0:4.3.25-202006081518.git.1.240b401.el8.src",
                "product": {
                  "name": "openshift-kuryr-0:4.3.25-202006081518.git.1.240b401.el8.src",
                  "product_id": "openshift-kuryr-0:4.3.25-202006081518.git.1.240b401.el8.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-kuryr@4.3.25-202006081518.git.1.240b401.el8?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "jenkins-0:2.222.1.1591349991-1.el7.src",
                "product": {
                  "name": "jenkins-0:2.222.1.1591349991-1.el7.src",
                  "product_id": "jenkins-0:2.222.1.1591349991-1.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jenkins@2.222.1.1591349991-1.el7?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.src",
                "product": {
                  "name": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.src",
                  "product_id": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o@1.16.6-15.dev.rhaos4.3.gitebc053b.el7?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "conmon-2:2.0.17-1.rhaos4.3.el7.src",
                "product": {
                  "name": "conmon-2:2.0.17-1.rhaos4.3.el7.src",
                  "product_id": "conmon-2:2.0.17-1.rhaos4.3.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/conmon@2.0.17-1.rhaos4.3.el7?arch=src\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-0:4.3.25-202006060952.git.1.96c30f6.el7.src",
                "product": {
                  "name": "openshift-0:4.3.25-202006060952.git.1.96c30f6.el7.src",
                  "product_id": "openshift-0:4.3.25-202006060952.git.1.96c30f6.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift@4.3.25-202006060952.git.1.96c30f6.el7?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.src",
                "product": {
                  "name": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.src",
                  "product_id": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-clients@4.3.25-202006060952.git.1.fd93102.el7?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.src",
                "product": {
                  "name": "openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.src",
                  "product_id": "openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-ansible@4.3.25-202006060952.git.1.1253fde.el7?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.src",
                "product": {
                  "name": "atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.src",
                  "product_id": "atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-enterprise-service-catalog@4.3.25-202006081518.git.1.52b3a66.el7?arch=src\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.src",
                "product": {
                  "name": "atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.src",
                  "product_id": "atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-service-idler@4.3.25-202006081518.git.1.79365c5.el7?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
                "product": {
                  "name": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
                  "product_id": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o@1.16.6-15.dev.rhaos4.3.gitebc053b.el8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
                "product": {
                  "name": "cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
                  "product_id": "cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debugsource@1.16.6-15.dev.rhaos4.3.gitebc053b.el8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
                "product": {
                  "name": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
                  "product_id": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debuginfo@1.16.6-15.dev.rhaos4.3.gitebc053b.el8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "conmon-2:2.0.17-1.rhaos4.3.el8.ppc64le",
                "product": {
                  "name": "conmon-2:2.0.17-1.rhaos4.3.el8.ppc64le",
                  "product_id": "conmon-2:2.0.17-1.rhaos4.3.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/conmon@2.0.17-1.rhaos4.3.el8?arch=ppc64le\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.ppc64le",
                "product": {
                  "name": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.ppc64le",
                  "product_id": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-hyperkube@4.3.25-202006060952.git.1.96c30f6.el8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.ppc64le",
                "product": {
                  "name": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.ppc64le",
                  "product_id": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-clients@4.3.25-202006060952.git.1.fd93102.el8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.ppc64le",
                "product": {
                  "name": "machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.ppc64le",
                  "product_id": "machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/machine-config-daemon@4.3.25-202006081518.git.1.478b31a.el8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
                "product": {
                  "name": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
                  "product_id": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o@1.16.6-15.dev.rhaos4.3.gitebc053b.el7?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
                "product": {
                  "name": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
                  "product_id": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debuginfo@1.16.6-15.dev.rhaos4.3.gitebc053b.el7?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "conmon-2:2.0.17-1.rhaos4.3.el7.ppc64le",
                "product": {
                  "name": "conmon-2:2.0.17-1.rhaos4.3.el7.ppc64le",
                  "product_id": "conmon-2:2.0.17-1.rhaos4.3.el7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/conmon@2.0.17-1.rhaos4.3.el7?arch=ppc64le\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.ppc64le",
                "product": {
                  "name": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.ppc64le",
                  "product_id": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-hyperkube@4.3.25-202006060952.git.1.96c30f6.el7?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.ppc64le",
                "product": {
                  "name": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.ppc64le",
                  "product_id": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-clients@4.3.25-202006060952.git.1.fd93102.el7?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
                "product": {
                  "name": "atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
                  "product_id": "atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-enterprise-service-catalog@4.3.25-202006081518.git.1.52b3a66.el7?arch=ppc64le\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
                "product": {
                  "name": "atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
                  "product_id": "atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-enterprise-service-catalog-svcat@4.3.25-202006081518.git.1.52b3a66.el7?arch=ppc64le\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.ppc64le",
                "product": {
                  "name": "atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.ppc64le",
                  "product_id": "atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-service-idler@4.3.25-202006081518.git.1.79365c5.el7?arch=ppc64le"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
                "product": {
                  "name": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
                  "product_id": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o@1.16.6-15.dev.rhaos4.3.gitebc053b.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
                "product": {
                  "name": "cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
                  "product_id": "cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debugsource@1.16.6-15.dev.rhaos4.3.gitebc053b.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
                "product": {
                  "name": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
                  "product_id": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debuginfo@1.16.6-15.dev.rhaos4.3.gitebc053b.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "conmon-2:2.0.17-1.rhaos4.3.el8.x86_64",
                "product": {
                  "name": "conmon-2:2.0.17-1.rhaos4.3.el8.x86_64",
                  "product_id": "conmon-2:2.0.17-1.rhaos4.3.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/conmon@2.0.17-1.rhaos4.3.el8?arch=x86_64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.x86_64",
                "product": {
                  "name": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.x86_64",
                  "product_id": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-hyperkube@4.3.25-202006060952.git.1.96c30f6.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
                "product": {
                  "name": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
                  "product_id": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-clients@4.3.25-202006060952.git.1.fd93102.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
                "product": {
                  "name": "openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
                  "product_id": "openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-clients-redistributable@4.3.25-202006060952.git.1.fd93102.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.x86_64",
                "product": {
                  "name": "machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.x86_64",
                  "product_id": "machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/machine-config-daemon@4.3.25-202006081518.git.1.478b31a.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
                "product": {
                  "name": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
                  "product_id": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o@1.16.6-15.dev.rhaos4.3.gitebc053b.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
                "product": {
                  "name": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
                  "product_id": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debuginfo@1.16.6-15.dev.rhaos4.3.gitebc053b.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "conmon-2:2.0.17-1.rhaos4.3.el7.x86_64",
                "product": {
                  "name": "conmon-2:2.0.17-1.rhaos4.3.el7.x86_64",
                  "product_id": "conmon-2:2.0.17-1.rhaos4.3.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/conmon@2.0.17-1.rhaos4.3.el7?arch=x86_64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.x86_64",
                "product": {
                  "name": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.x86_64",
                  "product_id": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-hyperkube@4.3.25-202006060952.git.1.96c30f6.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
                "product": {
                  "name": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
                  "product_id": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-clients@4.3.25-202006060952.git.1.fd93102.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
                "product": {
                  "name": "openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
                  "product_id": "openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-clients-redistributable@4.3.25-202006060952.git.1.fd93102.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
                "product": {
                  "name": "atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
                  "product_id": "atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-enterprise-service-catalog@4.3.25-202006081518.git.1.52b3a66.el7?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
                "product": {
                  "name": "atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
                  "product_id": "atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-enterprise-service-catalog-svcat@4.3.25-202006081518.git.1.52b3a66.el7?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.x86_64",
                "product": {
                  "name": "atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.x86_64",
                  "product_id": "atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-service-idler@4.3.25-202006081518.git.1.79365c5.el7?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "openshift-kuryr-cni-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
                "product": {
                  "name": "openshift-kuryr-cni-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
                  "product_id": "openshift-kuryr-cni-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-kuryr-cni@4.3.25-202006081518.git.1.240b401.el8?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-kuryr-common-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
                "product": {
                  "name": "openshift-kuryr-common-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
                  "product_id": "openshift-kuryr-common-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-kuryr-common@4.3.25-202006081518.git.1.240b401.el8?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-kuryr-controller-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
                "product": {
                  "name": "openshift-kuryr-controller-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
                  "product_id": "openshift-kuryr-controller-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-kuryr-controller@4.3.25-202006081518.git.1.240b401.el8?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python3-kuryr-kubernetes-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
                "product": {
                  "name": "python3-kuryr-kubernetes-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
                  "product_id": "python3-kuryr-kubernetes-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-kuryr-kubernetes@4.3.25-202006081518.git.1.240b401.el8?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "jenkins-0:2.222.1.1591349991-1.el7.noarch",
                "product": {
                  "name": "jenkins-0:2.222.1.1591349991-1.el7.noarch",
                  "product_id": "jenkins-0:2.222.1.1591349991-1.el7.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jenkins@2.222.1.1591349991-1.el7?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
                "product": {
                  "name": "openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
                  "product_id": "openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-ansible@4.3.25-202006060952.git.1.1253fde.el7?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-ansible-test-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
                "product": {
                  "name": "openshift-ansible-test-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
                  "product_id": "openshift-ansible-test-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-ansible-test@4.3.25-202006060952.git.1.1253fde.el7?arch=noarch"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le"
        },
        "product_reference": "atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x"
        },
        "product_reference": "atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.src as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.src"
        },
        "product_reference": "atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64 as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64"
        },
        "product_reference": "atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le"
        },
        "product_reference": "atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x"
        },
        "product_reference": "atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64 as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64"
        },
        "product_reference": "atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.ppc64le as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.ppc64le"
        },
        "product_reference": "atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.ppc64le",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.s390x"
        },
        "product_reference": "atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.s390x",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.src as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.src"
        },
        "product_reference": "atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.x86_64 as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.x86_64"
        },
        "product_reference": "atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "conmon-2:2.0.17-1.rhaos4.3.el7.ppc64le as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.ppc64le"
        },
        "product_reference": "conmon-2:2.0.17-1.rhaos4.3.el7.ppc64le",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "conmon-2:2.0.17-1.rhaos4.3.el7.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.s390x"
        },
        "product_reference": "conmon-2:2.0.17-1.rhaos4.3.el7.s390x",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "conmon-2:2.0.17-1.rhaos4.3.el7.src as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.src"
        },
        "product_reference": "conmon-2:2.0.17-1.rhaos4.3.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "conmon-2:2.0.17-1.rhaos4.3.el7.x86_64 as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.x86_64"
        },
        "product_reference": "conmon-2:2.0.17-1.rhaos4.3.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le"
        },
        "product_reference": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x"
        },
        "product_reference": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.src as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.src"
        },
        "product_reference": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64 as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64"
        },
        "product_reference": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le"
        },
        "product_reference": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x"
        },
        "product_reference": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64 as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64"
        },
        "product_reference": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jenkins-0:2.222.1.1591349991-1.el7.noarch as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.noarch"
        },
        "product_reference": "jenkins-0:2.222.1.1591349991-1.el7.noarch",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jenkins-0:2.222.1.1591349991-1.el7.src as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.src"
        },
        "product_reference": "jenkins-0:2.222.1.1591349991-1.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-0:4.3.25-202006060952.git.1.96c30f6.el7.src as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el7.src"
        },
        "product_reference": "openshift-0:4.3.25-202006060952.git.1.96c30f6.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.noarch as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.noarch"
        },
        "product_reference": "openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.src as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.src"
        },
        "product_reference": "openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-ansible-test-0:4.3.25-202006060952.git.1.1253fde.el7.noarch as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:openshift-ansible-test-0:4.3.25-202006060952.git.1.1253fde.el7.noarch"
        },
        "product_reference": "openshift-ansible-test-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.ppc64le as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.ppc64le"
        },
        "product_reference": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.ppc64le",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.s390x"
        },
        "product_reference": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.s390x",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.src as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.src"
        },
        "product_reference": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64 as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64"
        },
        "product_reference": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64 as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64"
        },
        "product_reference": "openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.ppc64le as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.ppc64le"
        },
        "product_reference": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.ppc64le",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.s390x"
        },
        "product_reference": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.s390x",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.x86_64 as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.x86_64"
        },
        "product_reference": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "conmon-2:2.0.17-1.rhaos4.3.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.ppc64le"
        },
        "product_reference": "conmon-2:2.0.17-1.rhaos4.3.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "conmon-2:2.0.17-1.rhaos4.3.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.s390x"
        },
        "product_reference": "conmon-2:2.0.17-1.rhaos4.3.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "conmon-2:2.0.17-1.rhaos4.3.el8.src as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.src"
        },
        "product_reference": "conmon-2:2.0.17-1.rhaos4.3.el8.src",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "conmon-2:2.0.17-1.rhaos4.3.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.x86_64"
        },
        "product_reference": "conmon-2:2.0.17-1.rhaos4.3.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le"
        },
        "product_reference": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x"
        },
        "product_reference": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.src as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.src"
        },
        "product_reference": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.src",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64"
        },
        "product_reference": "cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le"
        },
        "product_reference": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x"
        },
        "product_reference": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64"
        },
        "product_reference": "cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le"
        },
        "product_reference": "cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x"
        },
        "product_reference": "cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64"
        },
        "product_reference": "cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.ppc64le"
        },
        "product_reference": "machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.s390x"
        },
        "product_reference": "machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.src as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.src"
        },
        "product_reference": "machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.src",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.x86_64"
        },
        "product_reference": "machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-0:4.3.25-202006060952.git.1.96c30f6.el8.src as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el8.src"
        },
        "product_reference": "openshift-0:4.3.25-202006060952.git.1.96c30f6.el8.src",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.ppc64le"
        },
        "product_reference": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.s390x"
        },
        "product_reference": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.src as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.src"
        },
        "product_reference": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.src",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64"
        },
        "product_reference": "openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64"
        },
        "product_reference": "openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.ppc64le"
        },
        "product_reference": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.s390x"
        },
        "product_reference": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.x86_64"
        },
        "product_reference": "openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-kuryr-0:4.3.25-202006081518.git.1.240b401.el8.src as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:openshift-kuryr-0:4.3.25-202006081518.git.1.240b401.el8.src"
        },
        "product_reference": "openshift-kuryr-0:4.3.25-202006081518.git.1.240b401.el8.src",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-kuryr-cni-0:4.3.25-202006081518.git.1.240b401.el8.noarch as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:openshift-kuryr-cni-0:4.3.25-202006081518.git.1.240b401.el8.noarch"
        },
        "product_reference": "openshift-kuryr-cni-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-kuryr-common-0:4.3.25-202006081518.git.1.240b401.el8.noarch as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:openshift-kuryr-common-0:4.3.25-202006081518.git.1.240b401.el8.noarch"
        },
        "product_reference": "openshift-kuryr-common-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-kuryr-controller-0:4.3.25-202006081518.git.1.240b401.el8.noarch as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:openshift-kuryr-controller-0:4.3.25-202006081518.git.1.240b401.el8.noarch"
        },
        "product_reference": "openshift-kuryr-controller-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-kuryr-kubernetes-0:4.3.25-202006081518.git.1.240b401.el8.noarch as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:python3-kuryr-kubernetes-0:4.3.25-202006081518.git.1.240b401.el8.noarch"
        },
        "product_reference": "python3-kuryr-kubernetes-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-2:2.6.0-23.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.s390x"
        },
        "product_reference": "s390utils-2:2.6.0-23.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-2:2.6.0-23.el8.src as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.src"
        },
        "product_reference": "s390utils-2:2.6.0-23.el8.src",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-base-2:2.6.0-23.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-base-2:2.6.0-23.el8.s390x"
        },
        "product_reference": "s390utils-base-2:2.6.0-23.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-base-debuginfo-2:2.6.0-23.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-base-debuginfo-2:2.6.0-23.el8.s390x"
        },
        "product_reference": "s390utils-base-debuginfo-2:2.6.0-23.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-cmsfs-2:2.6.0-23.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-cmsfs-2:2.6.0-23.el8.s390x"
        },
        "product_reference": "s390utils-cmsfs-2:2.6.0-23.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-cmsfs-debuginfo-2:2.6.0-23.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-cmsfs-debuginfo-2:2.6.0-23.el8.s390x"
        },
        "product_reference": "s390utils-cmsfs-debuginfo-2:2.6.0-23.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-cmsfs-fuse-2:2.6.0-23.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-cmsfs-fuse-2:2.6.0-23.el8.s390x"
        },
        "product_reference": "s390utils-cmsfs-fuse-2:2.6.0-23.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-cmsfs-fuse-debuginfo-2:2.6.0-23.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-cmsfs-fuse-debuginfo-2:2.6.0-23.el8.s390x"
        },
        "product_reference": "s390utils-cmsfs-fuse-debuginfo-2:2.6.0-23.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-cpacfstatsd-2:2.6.0-23.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-cpacfstatsd-2:2.6.0-23.el8.s390x"
        },
        "product_reference": "s390utils-cpacfstatsd-2:2.6.0-23.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-cpacfstatsd-debuginfo-2:2.6.0-23.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-cpacfstatsd-debuginfo-2:2.6.0-23.el8.s390x"
        },
        "product_reference": "s390utils-cpacfstatsd-debuginfo-2:2.6.0-23.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-cpuplugd-2:2.6.0-23.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-cpuplugd-2:2.6.0-23.el8.s390x"
        },
        "product_reference": "s390utils-cpuplugd-2:2.6.0-23.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-cpuplugd-debuginfo-2:2.6.0-23.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-cpuplugd-debuginfo-2:2.6.0-23.el8.s390x"
        },
        "product_reference": "s390utils-cpuplugd-debuginfo-2:2.6.0-23.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-debuginfo-2:2.6.0-23.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-debuginfo-2:2.6.0-23.el8.s390x"
        },
        "product_reference": "s390utils-debuginfo-2:2.6.0-23.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-debugsource-2:2.6.0-23.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-debugsource-2:2.6.0-23.el8.s390x"
        },
        "product_reference": "s390utils-debugsource-2:2.6.0-23.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-devel-2:2.6.0-23.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-devel-2:2.6.0-23.el8.s390x"
        },
        "product_reference": "s390utils-devel-2:2.6.0-23.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-hmcdrvfs-2:2.6.0-23.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-hmcdrvfs-2:2.6.0-23.el8.s390x"
        },
        "product_reference": "s390utils-hmcdrvfs-2:2.6.0-23.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-hmcdrvfs-debuginfo-2:2.6.0-23.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-hmcdrvfs-debuginfo-2:2.6.0-23.el8.s390x"
        },
        "product_reference": "s390utils-hmcdrvfs-debuginfo-2:2.6.0-23.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-iucvterm-2:2.6.0-23.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-iucvterm-2:2.6.0-23.el8.s390x"
        },
        "product_reference": "s390utils-iucvterm-2:2.6.0-23.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-iucvterm-debuginfo-2:2.6.0-23.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-iucvterm-debuginfo-2:2.6.0-23.el8.s390x"
        },
        "product_reference": "s390utils-iucvterm-debuginfo-2:2.6.0-23.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-mon_statd-2:2.6.0-23.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-mon_statd-2:2.6.0-23.el8.s390x"
        },
        "product_reference": "s390utils-mon_statd-2:2.6.0-23.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-mon_statd-debuginfo-2:2.6.0-23.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-mon_statd-debuginfo-2:2.6.0-23.el8.s390x"
        },
        "product_reference": "s390utils-mon_statd-debuginfo-2:2.6.0-23.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-osasnmpd-2:2.6.0-23.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-osasnmpd-2:2.6.0-23.el8.s390x"
        },
        "product_reference": "s390utils-osasnmpd-2:2.6.0-23.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-osasnmpd-debuginfo-2:2.6.0-23.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-osasnmpd-debuginfo-2:2.6.0-23.el8.s390x"
        },
        "product_reference": "s390utils-osasnmpd-debuginfo-2:2.6.0-23.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-zdsfs-2:2.6.0-23.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-zdsfs-2:2.6.0-23.el8.s390x"
        },
        "product_reference": "s390utils-zdsfs-2:2.6.0-23.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-zdsfs-debuginfo-2:2.6.0-23.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-zdsfs-debuginfo-2:2.6.0-23.el8.s390x"
        },
        "product_reference": "s390utils-zdsfs-debuginfo-2:2.6.0-23.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-ziomon-2:2.6.0-23.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-ziomon-2:2.6.0-23.el8.s390x"
        },
        "product_reference": "s390utils-ziomon-2:2.6.0-23.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "s390utils-ziomon-debuginfo-2:2.6.0-23.el8.s390x as a component of Red Hat OpenShift Container Platform 4.3",
          "product_id": "8Base-RHOSE-4.3:s390utils-ziomon-debuginfo-2:2.6.0-23.el8.s390x"
        },
        "product_reference": "s390utils-ziomon-debuginfo-2:2.6.0-23.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.3"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2020-2160",
      "cwe": {
        "id": "CWE-352",
        "name": "Cross-Site Request Forgery (CSRF)"
      },
      "discovery_date": "2020-03-26T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1819190"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Jenkins 2.227 and earlier, LTS 2.204.5 and earlier uses different representations of request URL paths, which allows attackers to craft URLs that allow bypassing CSRF protection of any target URL.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "jenkins: CSRF protection bypass via crafted URLs",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.src",
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.s390x",
          "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.src",
          "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.s390x",
          "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.src",
          "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
          "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.src",
          "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
          "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.noarch",
          "7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.src",
          "7Server-RH7-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el7.src",
          "7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
          "7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.src",
          "7Server-RH7-RHOSE-4.3:openshift-ansible-test-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
          "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.s390x",
          "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.src",
          "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.s390x",
          "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.x86_64",
          "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.ppc64le",
          "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.s390x",
          "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.src",
          "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.x86_64",
          "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
          "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
          "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.src",
          "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
          "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
          "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
          "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
          "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
          "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
          "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
          "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.ppc64le",
          "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.s390x",
          "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.src",
          "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.x86_64",
          "8Base-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el8.src",
          "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.ppc64le",
          "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.s390x",
          "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.src",
          "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
          "8Base-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
          "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.ppc64le",
          "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.s390x",
          "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.x86_64",
          "8Base-RHOSE-4.3:openshift-kuryr-0:4.3.25-202006081518.git.1.240b401.el8.src",
          "8Base-RHOSE-4.3:openshift-kuryr-cni-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
          "8Base-RHOSE-4.3:openshift-kuryr-common-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
          "8Base-RHOSE-4.3:openshift-kuryr-controller-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
          "8Base-RHOSE-4.3:python3-kuryr-kubernetes-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
          "8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.src",
          "8Base-RHOSE-4.3:s390utils-base-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-base-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cmsfs-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cmsfs-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cmsfs-fuse-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cmsfs-fuse-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cpacfstatsd-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cpacfstatsd-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cpuplugd-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cpuplugd-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-debugsource-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-devel-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-hmcdrvfs-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-hmcdrvfs-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-iucvterm-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-iucvterm-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-mon_statd-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-mon_statd-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-osasnmpd-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-osasnmpd-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-zdsfs-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-zdsfs-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-ziomon-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-ziomon-debuginfo-2:2.6.0-23.el8.s390x"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2020-2160"
        },
        {
          "category": "external",
          "summary": "RHBZ#1819190",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1819190"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2020-2160",
          "url": "https://www.cve.org/CVERecord?id=CVE-2020-2160"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2160",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2160"
        },
        {
          "category": "external",
          "summary": "https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1774",
          "url": "https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1774"
        }
      ],
      "release_date": "2020-03-25T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2020-06-17T19:44:05+00:00",
          "details": "For OpenShift Container Platform 4.3 see the following documentation, which\nwill be updated shortly for release 4.3.25, for important instructions on\nhow to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.openshift.com/container-platform/4.3/release_notes/ocp-4-3-release-notes.html\n\nDetails on how to access this content are available at\nhttps://docs.openshift.com/container-platform/4.3/updating/updating-cluster-cli.html.",
          "product_ids": [
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.src",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.s390x",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.src",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.s390x",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.src",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.src",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
            "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.noarch",
            "7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
            "7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-ansible-test-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.s390x",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.s390x",
            "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.x86_64",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.ppc64le",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.s390x",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.src",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.x86_64",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.src",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
            "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
            "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
            "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
            "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
            "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
            "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.ppc64le",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.s390x",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.src",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el8.src",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.ppc64le",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.s390x",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.src",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.ppc64le",
            "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.s390x",
            "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-kuryr-0:4.3.25-202006081518.git.1.240b401.el8.src",
            "8Base-RHOSE-4.3:openshift-kuryr-cni-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:openshift-kuryr-common-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:openshift-kuryr-controller-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:python3-kuryr-kubernetes-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.src",
            "8Base-RHOSE-4.3:s390utils-base-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-base-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-fuse-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-fuse-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpacfstatsd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpacfstatsd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpuplugd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpuplugd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-debugsource-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-devel-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-hmcdrvfs-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-hmcdrvfs-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-iucvterm-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-iucvterm-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-mon_statd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-mon_statd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-osasnmpd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-osasnmpd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-zdsfs-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-zdsfs-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-ziomon-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-ziomon-debuginfo-2:2.6.0-23.el8.s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHBA-2020:2435"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.src",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.s390x",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.src",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.s390x",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.src",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.src",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
            "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.noarch",
            "7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
            "7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-ansible-test-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.s390x",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.s390x",
            "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.x86_64",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.ppc64le",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.s390x",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.src",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.x86_64",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.src",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
            "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
            "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
            "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
            "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
            "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
            "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.ppc64le",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.s390x",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.src",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el8.src",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.ppc64le",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.s390x",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.src",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.ppc64le",
            "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.s390x",
            "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-kuryr-0:4.3.25-202006081518.git.1.240b401.el8.src",
            "8Base-RHOSE-4.3:openshift-kuryr-cni-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:openshift-kuryr-common-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:openshift-kuryr-controller-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:python3-kuryr-kubernetes-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.src",
            "8Base-RHOSE-4.3:s390utils-base-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-base-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-fuse-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-fuse-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpacfstatsd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpacfstatsd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpuplugd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpuplugd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-debugsource-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-devel-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-hmcdrvfs-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-hmcdrvfs-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-iucvterm-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-iucvterm-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-mon_statd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-mon_statd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-osasnmpd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-osasnmpd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-zdsfs-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-zdsfs-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-ziomon-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-ziomon-debuginfo-2:2.6.0-23.el8.s390x"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "jenkins: CSRF protection bypass via crafted URLs"
    },
    {
      "cve": "CVE-2020-2161",
      "cwe": {
        "id": "CWE-79",
        "name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
      },
      "discovery_date": "2020-03-26T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1819198"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Jenkins 2.227 and earlier, LTS 2.204.5 and earlier does not properly escape node labels that are shown in the form validation for label expressions on job configuration pages, resulting in a stored XSS vulnerability exploitable by users able to define node labels.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "jenkins: XSS in job configuration pages",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.src",
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.s390x",
          "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.src",
          "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.s390x",
          "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.src",
          "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
          "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.src",
          "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
          "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.noarch",
          "7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.src",
          "7Server-RH7-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el7.src",
          "7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
          "7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.src",
          "7Server-RH7-RHOSE-4.3:openshift-ansible-test-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
          "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.s390x",
          "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.src",
          "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.s390x",
          "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.x86_64",
          "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.ppc64le",
          "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.s390x",
          "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.src",
          "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.x86_64",
          "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
          "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
          "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.src",
          "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
          "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
          "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
          "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
          "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
          "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
          "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
          "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.ppc64le",
          "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.s390x",
          "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.src",
          "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.x86_64",
          "8Base-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el8.src",
          "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.ppc64le",
          "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.s390x",
          "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.src",
          "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
          "8Base-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
          "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.ppc64le",
          "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.s390x",
          "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.x86_64",
          "8Base-RHOSE-4.3:openshift-kuryr-0:4.3.25-202006081518.git.1.240b401.el8.src",
          "8Base-RHOSE-4.3:openshift-kuryr-cni-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
          "8Base-RHOSE-4.3:openshift-kuryr-common-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
          "8Base-RHOSE-4.3:openshift-kuryr-controller-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
          "8Base-RHOSE-4.3:python3-kuryr-kubernetes-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
          "8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.src",
          "8Base-RHOSE-4.3:s390utils-base-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-base-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cmsfs-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cmsfs-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cmsfs-fuse-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cmsfs-fuse-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cpacfstatsd-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cpacfstatsd-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cpuplugd-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cpuplugd-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-debugsource-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-devel-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-hmcdrvfs-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-hmcdrvfs-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-iucvterm-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-iucvterm-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-mon_statd-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-mon_statd-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-osasnmpd-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-osasnmpd-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-zdsfs-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-zdsfs-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-ziomon-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-ziomon-debuginfo-2:2.6.0-23.el8.s390x"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2020-2161"
        },
        {
          "category": "external",
          "summary": "RHBZ#1819198",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1819198"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2020-2161",
          "url": "https://www.cve.org/CVERecord?id=CVE-2020-2161"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2161",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2161"
        },
        {
          "category": "external",
          "summary": "https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1781",
          "url": "https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1781"
        }
      ],
      "release_date": "2020-03-25T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2020-06-17T19:44:05+00:00",
          "details": "For OpenShift Container Platform 4.3 see the following documentation, which\nwill be updated shortly for release 4.3.25, for important instructions on\nhow to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.openshift.com/container-platform/4.3/release_notes/ocp-4-3-release-notes.html\n\nDetails on how to access this content are available at\nhttps://docs.openshift.com/container-platform/4.3/updating/updating-cluster-cli.html.",
          "product_ids": [
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.src",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.s390x",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.src",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.s390x",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.src",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.src",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
            "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.noarch",
            "7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
            "7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-ansible-test-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.s390x",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.s390x",
            "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.x86_64",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.ppc64le",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.s390x",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.src",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.x86_64",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.src",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
            "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
            "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
            "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
            "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
            "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
            "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.ppc64le",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.s390x",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.src",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el8.src",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.ppc64le",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.s390x",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.src",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.ppc64le",
            "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.s390x",
            "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-kuryr-0:4.3.25-202006081518.git.1.240b401.el8.src",
            "8Base-RHOSE-4.3:openshift-kuryr-cni-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:openshift-kuryr-common-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:openshift-kuryr-controller-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:python3-kuryr-kubernetes-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.src",
            "8Base-RHOSE-4.3:s390utils-base-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-base-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-fuse-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-fuse-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpacfstatsd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpacfstatsd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpuplugd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpuplugd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-debugsource-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-devel-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-hmcdrvfs-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-hmcdrvfs-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-iucvterm-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-iucvterm-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-mon_statd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-mon_statd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-osasnmpd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-osasnmpd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-zdsfs-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-zdsfs-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-ziomon-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-ziomon-debuginfo-2:2.6.0-23.el8.s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHBA-2020:2435"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 5.4,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.src",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.s390x",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.src",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.s390x",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.src",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.src",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
            "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.noarch",
            "7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
            "7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-ansible-test-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.s390x",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.s390x",
            "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.x86_64",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.ppc64le",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.s390x",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.src",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.x86_64",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.src",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
            "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
            "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
            "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
            "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
            "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
            "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.ppc64le",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.s390x",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.src",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el8.src",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.ppc64le",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.s390x",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.src",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.ppc64le",
            "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.s390x",
            "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-kuryr-0:4.3.25-202006081518.git.1.240b401.el8.src",
            "8Base-RHOSE-4.3:openshift-kuryr-cni-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:openshift-kuryr-common-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:openshift-kuryr-controller-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:python3-kuryr-kubernetes-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.src",
            "8Base-RHOSE-4.3:s390utils-base-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-base-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-fuse-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-fuse-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpacfstatsd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpacfstatsd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpuplugd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpuplugd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-debugsource-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-devel-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-hmcdrvfs-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-hmcdrvfs-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-iucvterm-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-iucvterm-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-mon_statd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-mon_statd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-osasnmpd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-osasnmpd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-zdsfs-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-zdsfs-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-ziomon-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-ziomon-debuginfo-2:2.6.0-23.el8.s390x"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "jenkins: XSS in job configuration pages"
    },
    {
      "cve": "CVE-2020-2162",
      "cwe": {
        "id": "CWE-79",
        "name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
      },
      "discovery_date": "2020-03-26T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1819211"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Jenkins 2.227 and earlier, LTS 2.204.5 and earlier does not set Content-Security-Policy headers for files uploaded as file parameters to a build, resulting in a stored XSS vulnerability.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "jenkins: Content-Security-Policy headers for files uploaded leads to XSS",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.src",
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.s390x",
          "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.src",
          "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.s390x",
          "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.src",
          "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
          "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.src",
          "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
          "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.noarch",
          "7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.src",
          "7Server-RH7-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el7.src",
          "7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
          "7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.src",
          "7Server-RH7-RHOSE-4.3:openshift-ansible-test-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
          "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.s390x",
          "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.src",
          "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.s390x",
          "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.x86_64",
          "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.ppc64le",
          "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.s390x",
          "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.src",
          "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.x86_64",
          "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
          "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
          "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.src",
          "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
          "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
          "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
          "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
          "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
          "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
          "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
          "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.ppc64le",
          "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.s390x",
          "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.src",
          "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.x86_64",
          "8Base-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el8.src",
          "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.ppc64le",
          "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.s390x",
          "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.src",
          "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
          "8Base-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
          "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.ppc64le",
          "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.s390x",
          "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.x86_64",
          "8Base-RHOSE-4.3:openshift-kuryr-0:4.3.25-202006081518.git.1.240b401.el8.src",
          "8Base-RHOSE-4.3:openshift-kuryr-cni-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
          "8Base-RHOSE-4.3:openshift-kuryr-common-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
          "8Base-RHOSE-4.3:openshift-kuryr-controller-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
          "8Base-RHOSE-4.3:python3-kuryr-kubernetes-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
          "8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.src",
          "8Base-RHOSE-4.3:s390utils-base-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-base-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cmsfs-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cmsfs-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cmsfs-fuse-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cmsfs-fuse-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cpacfstatsd-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cpacfstatsd-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cpuplugd-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cpuplugd-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-debugsource-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-devel-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-hmcdrvfs-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-hmcdrvfs-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-iucvterm-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-iucvterm-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-mon_statd-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-mon_statd-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-osasnmpd-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-osasnmpd-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-zdsfs-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-zdsfs-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-ziomon-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-ziomon-debuginfo-2:2.6.0-23.el8.s390x"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2020-2162"
        },
        {
          "category": "external",
          "summary": "RHBZ#1819211",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1819211"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2020-2162",
          "url": "https://www.cve.org/CVERecord?id=CVE-2020-2162"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2162",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2162"
        },
        {
          "category": "external",
          "summary": "https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1793",
          "url": "https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1793"
        }
      ],
      "release_date": "2020-03-25T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2020-06-17T19:44:05+00:00",
          "details": "For OpenShift Container Platform 4.3 see the following documentation, which\nwill be updated shortly for release 4.3.25, for important instructions on\nhow to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.openshift.com/container-platform/4.3/release_notes/ocp-4-3-release-notes.html\n\nDetails on how to access this content are available at\nhttps://docs.openshift.com/container-platform/4.3/updating/updating-cluster-cli.html.",
          "product_ids": [
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.src",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.s390x",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.src",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.s390x",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.src",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.src",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
            "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.noarch",
            "7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
            "7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-ansible-test-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.s390x",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.s390x",
            "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.x86_64",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.ppc64le",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.s390x",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.src",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.x86_64",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.src",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
            "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
            "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
            "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
            "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
            "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
            "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.ppc64le",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.s390x",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.src",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el8.src",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.ppc64le",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.s390x",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.src",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.ppc64le",
            "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.s390x",
            "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-kuryr-0:4.3.25-202006081518.git.1.240b401.el8.src",
            "8Base-RHOSE-4.3:openshift-kuryr-cni-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:openshift-kuryr-common-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:openshift-kuryr-controller-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:python3-kuryr-kubernetes-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.src",
            "8Base-RHOSE-4.3:s390utils-base-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-base-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-fuse-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-fuse-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpacfstatsd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpacfstatsd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpuplugd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpuplugd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-debugsource-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-devel-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-hmcdrvfs-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-hmcdrvfs-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-iucvterm-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-iucvterm-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-mon_statd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-mon_statd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-osasnmpd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-osasnmpd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-zdsfs-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-zdsfs-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-ziomon-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-ziomon-debuginfo-2:2.6.0-23.el8.s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHBA-2020:2435"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 5.4,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.src",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.s390x",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.src",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.s390x",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.src",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.src",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
            "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.noarch",
            "7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
            "7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-ansible-test-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.s390x",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.s390x",
            "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.x86_64",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.ppc64le",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.s390x",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.src",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.x86_64",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.src",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
            "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
            "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
            "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
            "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
            "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
            "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.ppc64le",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.s390x",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.src",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el8.src",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.ppc64le",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.s390x",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.src",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.ppc64le",
            "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.s390x",
            "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-kuryr-0:4.3.25-202006081518.git.1.240b401.el8.src",
            "8Base-RHOSE-4.3:openshift-kuryr-cni-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:openshift-kuryr-common-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:openshift-kuryr-controller-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:python3-kuryr-kubernetes-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.src",
            "8Base-RHOSE-4.3:s390utils-base-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-base-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-fuse-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-fuse-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpacfstatsd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpacfstatsd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpuplugd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpuplugd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-debugsource-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-devel-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-hmcdrvfs-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-hmcdrvfs-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-iucvterm-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-iucvterm-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-mon_statd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-mon_statd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-osasnmpd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-osasnmpd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-zdsfs-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-zdsfs-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-ziomon-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-ziomon-debuginfo-2:2.6.0-23.el8.s390x"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "jenkins: Content-Security-Policy headers for files uploaded leads to XSS"
    },
    {
      "cve": "CVE-2020-2163",
      "cwe": {
        "id": "CWE-79",
        "name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
      },
      "discovery_date": "2020-03-25T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1819222"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Jenkins 2.227 and earlier, LTS 2.204.5 and earlier improperly processes HTML content of list view column headers, resulting in a stored XSS vulnerability exploitable by users able to control column headers.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "jenkins: improperly processes HTML content of list leads to XSS",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.src",
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
          "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.s390x",
          "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.src",
          "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.s390x",
          "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.src",
          "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
          "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.src",
          "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
          "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.noarch",
          "7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.src",
          "7Server-RH7-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el7.src",
          "7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
          "7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.src",
          "7Server-RH7-RHOSE-4.3:openshift-ansible-test-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
          "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.s390x",
          "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.src",
          "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
          "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.ppc64le",
          "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.s390x",
          "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.x86_64",
          "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.ppc64le",
          "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.s390x",
          "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.src",
          "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.x86_64",
          "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
          "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
          "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.src",
          "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
          "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
          "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
          "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
          "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
          "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
          "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
          "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.ppc64le",
          "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.s390x",
          "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.src",
          "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.x86_64",
          "8Base-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el8.src",
          "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.ppc64le",
          "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.s390x",
          "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.src",
          "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
          "8Base-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
          "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.ppc64le",
          "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.s390x",
          "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.x86_64",
          "8Base-RHOSE-4.3:openshift-kuryr-0:4.3.25-202006081518.git.1.240b401.el8.src",
          "8Base-RHOSE-4.3:openshift-kuryr-cni-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
          "8Base-RHOSE-4.3:openshift-kuryr-common-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
          "8Base-RHOSE-4.3:openshift-kuryr-controller-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
          "8Base-RHOSE-4.3:python3-kuryr-kubernetes-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
          "8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.src",
          "8Base-RHOSE-4.3:s390utils-base-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-base-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cmsfs-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cmsfs-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cmsfs-fuse-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cmsfs-fuse-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cpacfstatsd-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cpacfstatsd-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cpuplugd-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-cpuplugd-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-debugsource-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-devel-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-hmcdrvfs-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-hmcdrvfs-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-iucvterm-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-iucvterm-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-mon_statd-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-mon_statd-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-osasnmpd-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-osasnmpd-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-zdsfs-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-zdsfs-debuginfo-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-ziomon-2:2.6.0-23.el8.s390x",
          "8Base-RHOSE-4.3:s390utils-ziomon-debuginfo-2:2.6.0-23.el8.s390x"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2020-2163"
        },
        {
          "category": "external",
          "summary": "RHBZ#1819222",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1819222"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2020-2163",
          "url": "https://www.cve.org/CVERecord?id=CVE-2020-2163"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2163",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2163"
        },
        {
          "category": "external",
          "summary": "https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1796",
          "url": "https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1796"
        }
      ],
      "release_date": "2020-03-26T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2020-06-17T19:44:05+00:00",
          "details": "For OpenShift Container Platform 4.3 see the following documentation, which\nwill be updated shortly for release 4.3.25, for important instructions on\nhow to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.openshift.com/container-platform/4.3/release_notes/ocp-4-3-release-notes.html\n\nDetails on how to access this content are available at\nhttps://docs.openshift.com/container-platform/4.3/updating/updating-cluster-cli.html.",
          "product_ids": [
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.src",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.s390x",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.src",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.s390x",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.src",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.src",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
            "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.noarch",
            "7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
            "7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-ansible-test-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.s390x",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.s390x",
            "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.x86_64",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.ppc64le",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.s390x",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.src",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.x86_64",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.src",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
            "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
            "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
            "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
            "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
            "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
            "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.ppc64le",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.s390x",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.src",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el8.src",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.ppc64le",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.s390x",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.src",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.ppc64le",
            "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.s390x",
            "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-kuryr-0:4.3.25-202006081518.git.1.240b401.el8.src",
            "8Base-RHOSE-4.3:openshift-kuryr-cni-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:openshift-kuryr-common-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:openshift-kuryr-controller-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:python3-kuryr-kubernetes-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.src",
            "8Base-RHOSE-4.3:s390utils-base-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-base-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-fuse-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-fuse-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpacfstatsd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpacfstatsd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpuplugd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpuplugd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-debugsource-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-devel-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-hmcdrvfs-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-hmcdrvfs-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-iucvterm-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-iucvterm-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-mon_statd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-mon_statd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-osasnmpd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-osasnmpd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-zdsfs-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-zdsfs-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-ziomon-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-ziomon-debuginfo-2:2.6.0-23.el8.s390x"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHBA-2020:2435"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 5.4,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.src",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.s390x",
            "7Server-RH7-RHOSE-4.3:atomic-enterprise-service-catalog-svcat-1:4.3.25-202006081518.git.1.52b3a66.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.s390x",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.src",
            "7Server-RH7-RHOSE-4.3:atomic-openshift-service-idler-0:4.3.25-202006081518.git.1.79365c5.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.s390x",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.src",
            "7Server-RH7-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.src",
            "7Server-RH7-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.s390x",
            "7Server-RH7-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.noarch",
            "7Server-RH7-RHOSE-4.3:jenkins-0:2.222.1.1591349991-1.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
            "7Server-RH7-RHOSE-4.3:openshift-ansible-0:4.3.25-202006060952.git.1.1253fde.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-ansible-test-0:4.3.25-202006060952.git.1.1253fde.el7.noarch",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.s390x",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.src",
            "7Server-RH7-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el7.x86_64",
            "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.ppc64le",
            "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.s390x",
            "7Server-RH7-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el7.x86_64",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.ppc64le",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.s390x",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.src",
            "8Base-RHOSE-4.3:conmon-2:2.0.17-1.rhaos4.3.el8.x86_64",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.src",
            "8Base-RHOSE-4.3:cri-o-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
            "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
            "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
            "8Base-RHOSE-4.3:cri-o-debuginfo-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
            "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.ppc64le",
            "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.s390x",
            "8Base-RHOSE-4.3:cri-o-debugsource-0:1.16.6-15.dev.rhaos4.3.gitebc053b.el8.x86_64",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.ppc64le",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.s390x",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.src",
            "8Base-RHOSE-4.3:machine-config-daemon-0:4.3.25-202006081518.git.1.478b31a.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-0:4.3.25-202006060952.git.1.96c30f6.el8.src",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.ppc64le",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.s390x",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.src",
            "8Base-RHOSE-4.3:openshift-clients-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-clients-redistributable-0:4.3.25-202006060952.git.1.fd93102.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.ppc64le",
            "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.s390x",
            "8Base-RHOSE-4.3:openshift-hyperkube-0:4.3.25-202006060952.git.1.96c30f6.el8.x86_64",
            "8Base-RHOSE-4.3:openshift-kuryr-0:4.3.25-202006081518.git.1.240b401.el8.src",
            "8Base-RHOSE-4.3:openshift-kuryr-cni-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:openshift-kuryr-common-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:openshift-kuryr-controller-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:python3-kuryr-kubernetes-0:4.3.25-202006081518.git.1.240b401.el8.noarch",
            "8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-2:2.6.0-23.el8.src",
            "8Base-RHOSE-4.3:s390utils-base-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-base-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-fuse-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cmsfs-fuse-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpacfstatsd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpacfstatsd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpuplugd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-cpuplugd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-debugsource-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-devel-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-hmcdrvfs-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-hmcdrvfs-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-iucvterm-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-iucvterm-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-mon_statd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-mon_statd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-osasnmpd-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-osasnmpd-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-zdsfs-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-zdsfs-debuginfo-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-ziomon-2:2.6.0-23.el8.s390x",
            "8Base-RHOSE-4.3:s390utils-ziomon-debuginfo-2:2.6.0-23.el8.s390x"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "jenkins: improperly processes HTML content of list leads to XSS"
    }
  ]
}

RHBA-2020_2444

Vulnerability from csaf_redhat - Published: 2020-06-17 19:38 - Updated: 2024-11-22 15:19

Summary

Red Hat Bug Fix Advisory: OpenShift Container Platform 4.4.8 packages update

Severity

Important

Notes

Topic: Red Hat OpenShift Container Platform release 4.4.8 is now available with updates to packages and images that fix several bugs.

CVE-2020-2160

Jenkins 2.227 and earlier, LTS 2.204.5 and earlier uses different representations of request URL paths, which allows attackers to craft URLs that allow bypassing CSRF protection of any target URL.

8.8 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-352 - Cross-Site Request Forgery (CSRF)

Affected products

Fixed 38 products

Product	Version	Remediation
Unresolved product id: 7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-svcat-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-ansible-test-0:4.4.0-202006061254.git.1.a996454.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:cri-o-debugsource-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-kuryr-0:4.4.0-202006080017.git.1.855ef1d.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-kuryr-cni-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-kuryr-common-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-kuryr-controller-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:python3-kuryr-kubernetes-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch	—	Vendor Fix fix

Threats

Impact Important

CVE-2020-2161

5.4 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Affected products

Fixed 38 products

Product	Version	Remediation
Unresolved product id: 7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-svcat-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-ansible-test-0:4.4.0-202006061254.git.1.a996454.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:cri-o-debugsource-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-kuryr-0:4.4.0-202006080017.git.1.855ef1d.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-kuryr-cni-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-kuryr-common-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-kuryr-controller-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:python3-kuryr-kubernetes-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2020-2162

Jenkins 2.227 and earlier, LTS 2.204.5 and earlier does not set Content-Security-Policy headers for files uploaded as file parameters to a build, resulting in a stored XSS vulnerability.

5.4 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Affected products

Fixed 38 products

Product	Version	Remediation
Unresolved product id: 7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-svcat-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-ansible-test-0:4.4.0-202006061254.git.1.a996454.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:cri-o-debugsource-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-kuryr-0:4.4.0-202006080017.git.1.855ef1d.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-kuryr-cni-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-kuryr-common-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-kuryr-controller-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:python3-kuryr-kubernetes-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch	—	Vendor Fix fix

Threats

Impact Moderate

CVE-2020-2163

5.4 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Affected products

Fixed 38 products

Product	Version	Remediation
Unresolved product id: 7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-svcat-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-ansible-test-0:4.4.0-202006061254.git.1.a996454.el7.noarch	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.src	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 7Server-RH7-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el7.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:cri-o-debugsource-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-kuryr-0:4.4.0-202006080017.git.1.855ef1d.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-kuryr-cni-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-kuryr-common-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:openshift-kuryr-controller-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.4:python3-kuryr-kubernetes-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch	—	Vendor Fix fix

Threats

Impact Moderate

References

23 references

URL	Category
https://access.redhat.com/errata/RHBA-2020:2444	self
https://bugzilla.redhat.com/show_bug.cgi?id=1843489	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2020-2160	self
https://bugzilla.redhat.com/show_bug.cgi?id=1819190	external
https://www.cve.org/CVERecord?id=CVE-2020-2160	external
https://nvd.nist.gov/vuln/detail/CVE-2020-2160	external
https://jenkins.io/security/advisory/2020-03-25/#…	external
https://access.redhat.com/security/cve/CVE-2020-2161	self
https://bugzilla.redhat.com/show_bug.cgi?id=1819198	external
https://www.cve.org/CVERecord?id=CVE-2020-2161	external
https://nvd.nist.gov/vuln/detail/CVE-2020-2161	external
https://jenkins.io/security/advisory/2020-03-25/#…	external
https://access.redhat.com/security/cve/CVE-2020-2162	self
https://bugzilla.redhat.com/show_bug.cgi?id=1819211	external
https://www.cve.org/CVERecord?id=CVE-2020-2162	external
https://nvd.nist.gov/vuln/detail/CVE-2020-2162	external
https://jenkins.io/security/advisory/2020-03-25/#…	external
https://access.redhat.com/security/cve/CVE-2020-2163	self
https://bugzilla.redhat.com/show_bug.cgi?id=1819222	external
https://www.cve.org/CVERecord?id=CVE-2020-2163	external
https://nvd.nist.gov/vuln/detail/CVE-2020-2163	external
https://jenkins.io/security/advisory/2020-03-25/#…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Red Hat OpenShift Container Platform release 4.4.8 is now available with\nupdates to packages and images that fix several bugs.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Red Hat OpenShift Container Platform is Red Hat\u0027s cloud computing\nKubernetes application platform solution designed for on-premise or private\ncloud deployments.\n\nThis advisory contains the RPM packages for Red Hat OpenShift Container\nPlatform 4.4.8. See the following advisory for the container images for\nthis release:\n\nhttps://access.redhat.com/errata/RHBA-2020:2445\n\nAll OpenShift Container Platform 4.4 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift Console or the CLI oc command. Instructions for upgrading a cluster are available at https://docs.openshift.com/container-platform/4.4/updating/updating-cluster-between-minor.html#understanding-upgrade-channels_updating-cluster-between-minor.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHBA-2020:2444",
        "url": "https://access.redhat.com/errata/RHBA-2020:2444"
      },
      {
        "category": "external",
        "summary": "1843489",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1843489"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2020/rhba-2020_2444.json"
      }
    ],
    "title": "Red Hat Bug Fix Advisory: OpenShift Container Platform 4.4.8 packages update",
    "tracking": {
      "current_release_date": "2024-11-22T15:19:59+00:00",
      "generator": {
        "date": "2024-11-22T15:19:59+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.2.1"
        }
      },
      "id": "RHBA-2020:2444",
      "initial_release_date": "2020-06-17T19:38:33+00:00",
      "revision_history": [
        {
          "date": "2020-06-17T19:38:33+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2020-06-17T19:38:33+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2024-11-22T15:19:59+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat OpenShift Container Platform 4.4",
                "product": {
                  "name": "Red Hat OpenShift Container Platform 4.4",
                  "product_id": "7Server-RH7-RHOSE-4.4",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:4.4::el7"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat OpenShift Container Platform 4.4",
                "product": {
                  "name": "Red Hat OpenShift Container Platform 4.4",
                  "product_id": "8Base-RHOSE-4.4",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:4.4::el8"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat OpenShift Enterprise"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "jenkins-0:2.222.1.1591351066-1.el7.noarch",
                "product": {
                  "name": "jenkins-0:2.222.1.1591351066-1.el7.noarch",
                  "product_id": "jenkins-0:2.222.1.1591351066-1.el7.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jenkins@2.222.1.1591351066-1.el7?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
                "product": {
                  "name": "openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
                  "product_id": "openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-ansible@4.4.0-202006061254.git.1.a996454.el7?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-ansible-test-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
                "product": {
                  "name": "openshift-ansible-test-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
                  "product_id": "openshift-ansible-test-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-ansible-test@4.4.0-202006061254.git.1.a996454.el7?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-kuryr-cni-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
                "product": {
                  "name": "openshift-kuryr-cni-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
                  "product_id": "openshift-kuryr-cni-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-kuryr-cni@4.4.0-202006080017.git.1.855ef1d.el8?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-kuryr-common-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
                "product": {
                  "name": "openshift-kuryr-common-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
                  "product_id": "openshift-kuryr-common-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-kuryr-common@4.4.0-202006080017.git.1.855ef1d.el8?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-kuryr-controller-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
                "product": {
                  "name": "openshift-kuryr-controller-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
                  "product_id": "openshift-kuryr-controller-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-kuryr-controller@4.4.0-202006080017.git.1.855ef1d.el8?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python3-kuryr-kubernetes-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
                "product": {
                  "name": "python3-kuryr-kubernetes-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
                  "product_id": "python3-kuryr-kubernetes-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-kuryr-kubernetes@4.4.0-202006080017.git.1.855ef1d.el8?arch=noarch"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "jenkins-0:2.222.1.1591351066-1.el7.src",
                "product": {
                  "name": "jenkins-0:2.222.1.1591351066-1.el7.src",
                  "product_id": "jenkins-0:2.222.1.1591351066-1.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/jenkins@2.222.1.1591351066-1.el7?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "conmon-2:2.0.17-1.rhaos4.4.el7.src",
                "product": {
                  "name": "conmon-2:2.0.17-1.rhaos4.4.el7.src",
                  "product_id": "conmon-2:2.0.17-1.rhaos4.4.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/conmon@2.0.17-1.rhaos4.4.el7?arch=src\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.src",
                "product": {
                  "name": "cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.src",
                  "product_id": "cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o@1.17.4-14.dev.rhaos4.4.gitb93af5d.el7?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-0:4.4.0-202006061254.git.1.dc84fb4.el7.src",
                "product": {
                  "name": "openshift-0:4.4.0-202006061254.git.1.dc84fb4.el7.src",
                  "product_id": "openshift-0:4.4.0-202006061254.git.1.dc84fb4.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift@4.4.0-202006061254.git.1.dc84fb4.el7?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.src",
                "product": {
                  "name": "openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.src",
                  "product_id": "openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-clients@4.4.0-202006061254.git.1.26cb6dc.el7?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.src",
                "product": {
                  "name": "openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.src",
                  "product_id": "openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-ansible@4.4.0-202006061254.git.1.a996454.el7?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.src",
                "product": {
                  "name": "atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.src",
                  "product_id": "atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-service-idler@4.4.0-202006080017.git.1.7e463c3.el7?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.src",
                "product": {
                  "name": "atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.src",
                  "product_id": "atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-enterprise-service-catalog@4.4.0-202006080017.git.1.77a5cc9.el7?arch=src\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "conmon-2:2.0.17-1.rhaos4.4.el8.src",
                "product": {
                  "name": "conmon-2:2.0.17-1.rhaos4.4.el8.src",
                  "product_id": "conmon-2:2.0.17-1.rhaos4.4.el8.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/conmon@2.0.17-1.rhaos4.4.el8?arch=src\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.src",
                "product": {
                  "name": "cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.src",
                  "product_id": "cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o@1.17.4-14.dev.rhaos4.4.gitb93af5d.el8?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.src",
                "product": {
                  "name": "openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.src",
                  "product_id": "openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-clients@4.4.0-202006061254.git.1.26cb6dc.el8?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-0:4.4.0-202006061254.git.1.dc84fb4.el8.src",
                "product": {
                  "name": "openshift-0:4.4.0-202006061254.git.1.dc84fb4.el8.src",
                  "product_id": "openshift-0:4.4.0-202006061254.git.1.dc84fb4.el8.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift@4.4.0-202006061254.git.1.dc84fb4.el8?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-kuryr-0:4.4.0-202006080017.git.1.855ef1d.el8.src",
                "product": {
                  "name": "openshift-kuryr-0:4.4.0-202006080017.git.1.855ef1d.el8.src",
                  "product_id": "openshift-kuryr-0:4.4.0-202006080017.git.1.855ef1d.el8.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-kuryr@4.4.0-202006080017.git.1.855ef1d.el8?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.src",
                "product": {
                  "name": "machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.src",
                  "product_id": "machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/machine-config-daemon@4.4.0-202006080017.git.1.32e0736.el8?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "conmon-2:2.0.17-1.rhaos4.4.el7.x86_64",
                "product": {
                  "name": "conmon-2:2.0.17-1.rhaos4.4.el7.x86_64",
                  "product_id": "conmon-2:2.0.17-1.rhaos4.4.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/conmon@2.0.17-1.rhaos4.4.el7?arch=x86_64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
                "product": {
                  "name": "cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
                  "product_id": "cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o@1.17.4-14.dev.rhaos4.4.gitb93af5d.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
                "product": {
                  "name": "cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
                  "product_id": "cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debuginfo@1.17.4-14.dev.rhaos4.4.gitb93af5d.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el7.x86_64",
                "product": {
                  "name": "openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el7.x86_64",
                  "product_id": "openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-hyperkube@4.4.0-202006061254.git.1.dc84fb4.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
                "product": {
                  "name": "openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
                  "product_id": "openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-clients@4.4.0-202006061254.git.1.26cb6dc.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
                "product": {
                  "name": "openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
                  "product_id": "openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-clients-redistributable@4.4.0-202006061254.git.1.26cb6dc.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.x86_64",
                "product": {
                  "name": "atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.x86_64",
                  "product_id": "atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-openshift-service-idler@4.4.0-202006080017.git.1.7e463c3.el7?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
                "product": {
                  "name": "atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
                  "product_id": "atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-enterprise-service-catalog@4.4.0-202006080017.git.1.77a5cc9.el7?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "atomic-enterprise-service-catalog-svcat-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
                "product": {
                  "name": "atomic-enterprise-service-catalog-svcat-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
                  "product_id": "atomic-enterprise-service-catalog-svcat-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/atomic-enterprise-service-catalog-svcat@4.4.0-202006080017.git.1.77a5cc9.el7?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "conmon-2:2.0.17-1.rhaos4.4.el8.x86_64",
                "product": {
                  "name": "conmon-2:2.0.17-1.rhaos4.4.el8.x86_64",
                  "product_id": "conmon-2:2.0.17-1.rhaos4.4.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/conmon@2.0.17-1.rhaos4.4.el8?arch=x86_64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
                "product": {
                  "name": "cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
                  "product_id": "cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o@1.17.4-14.dev.rhaos4.4.gitb93af5d.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debugsource-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
                "product": {
                  "name": "cri-o-debugsource-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
                  "product_id": "cri-o-debugsource-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debugsource@1.17.4-14.dev.rhaos4.4.gitb93af5d.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
                "product": {
                  "name": "cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
                  "product_id": "cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debuginfo@1.17.4-14.dev.rhaos4.4.gitb93af5d.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
                "product": {
                  "name": "openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
                  "product_id": "openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-clients@4.4.0-202006061254.git.1.26cb6dc.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
                "product": {
                  "name": "openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
                  "product_id": "openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-clients-redistributable@4.4.0-202006061254.git.1.26cb6dc.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el8.x86_64",
                "product": {
                  "name": "openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el8.x86_64",
                  "product_id": "openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-hyperkube@4.4.0-202006061254.git.1.dc84fb4.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.x86_64",
                "product": {
                  "name": "machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.x86_64",
                  "product_id": "machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/machine-config-daemon@4.4.0-202006080017.git.1.32e0736.el8?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.src as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.src"
        },
        "product_reference": "atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64 as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64"
        },
        "product_reference": "atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-enterprise-service-catalog-svcat-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64 as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-svcat-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64"
        },
        "product_reference": "atomic-enterprise-service-catalog-svcat-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.src as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.src"
        },
        "product_reference": "atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.x86_64 as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.x86_64"
        },
        "product_reference": "atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "conmon-2:2.0.17-1.rhaos4.4.el7.src as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.src"
        },
        "product_reference": "conmon-2:2.0.17-1.rhaos4.4.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "conmon-2:2.0.17-1.rhaos4.4.el7.x86_64 as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.x86_64"
        },
        "product_reference": "conmon-2:2.0.17-1.rhaos4.4.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.src as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.src"
        },
        "product_reference": "cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64 as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64"
        },
        "product_reference": "cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64 as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "7Server-RH7-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64"
        },
        "product_reference": "cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jenkins-0:2.222.1.1591351066-1.el7.noarch as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.noarch"
        },
        "product_reference": "jenkins-0:2.222.1.1591351066-1.el7.noarch",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "jenkins-0:2.222.1.1591351066-1.el7.src as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.src"
        },
        "product_reference": "jenkins-0:2.222.1.1591351066-1.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-0:4.4.0-202006061254.git.1.dc84fb4.el7.src as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "7Server-RH7-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el7.src"
        },
        "product_reference": "openshift-0:4.4.0-202006061254.git.1.dc84fb4.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.noarch as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.noarch"
        },
        "product_reference": "openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.src as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.src"
        },
        "product_reference": "openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-ansible-test-0:4.4.0-202006061254.git.1.a996454.el7.noarch as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "7Server-RH7-RHOSE-4.4:openshift-ansible-test-0:4.4.0-202006061254.git.1.a996454.el7.noarch"
        },
        "product_reference": "openshift-ansible-test-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.src as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.src"
        },
        "product_reference": "openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.src",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64 as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64"
        },
        "product_reference": "openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64 as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "7Server-RH7-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64"
        },
        "product_reference": "openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el7.x86_64 as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "7Server-RH7-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el7.x86_64"
        },
        "product_reference": "openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el7.x86_64",
        "relates_to_product_reference": "7Server-RH7-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "conmon-2:2.0.17-1.rhaos4.4.el8.src as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.src"
        },
        "product_reference": "conmon-2:2.0.17-1.rhaos4.4.el8.src",
        "relates_to_product_reference": "8Base-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "conmon-2:2.0.17-1.rhaos4.4.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.x86_64"
        },
        "product_reference": "conmon-2:2.0.17-1.rhaos4.4.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.src as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.src"
        },
        "product_reference": "cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.src",
        "relates_to_product_reference": "8Base-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64"
        },
        "product_reference": "cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "8Base-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64"
        },
        "product_reference": "cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debugsource-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "8Base-RHOSE-4.4:cri-o-debugsource-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64"
        },
        "product_reference": "cri-o-debugsource-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.src as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.src"
        },
        "product_reference": "machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.src",
        "relates_to_product_reference": "8Base-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.x86_64"
        },
        "product_reference": "machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-0:4.4.0-202006061254.git.1.dc84fb4.el8.src as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "8Base-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el8.src"
        },
        "product_reference": "openshift-0:4.4.0-202006061254.git.1.dc84fb4.el8.src",
        "relates_to_product_reference": "8Base-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.src as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.src"
        },
        "product_reference": "openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.src",
        "relates_to_product_reference": "8Base-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64"
        },
        "product_reference": "openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "8Base-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64"
        },
        "product_reference": "openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "8Base-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el8.x86_64"
        },
        "product_reference": "openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-kuryr-0:4.4.0-202006080017.git.1.855ef1d.el8.src as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "8Base-RHOSE-4.4:openshift-kuryr-0:4.4.0-202006080017.git.1.855ef1d.el8.src"
        },
        "product_reference": "openshift-kuryr-0:4.4.0-202006080017.git.1.855ef1d.el8.src",
        "relates_to_product_reference": "8Base-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-kuryr-cni-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "8Base-RHOSE-4.4:openshift-kuryr-cni-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch"
        },
        "product_reference": "openshift-kuryr-cni-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
        "relates_to_product_reference": "8Base-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-kuryr-common-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "8Base-RHOSE-4.4:openshift-kuryr-common-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch"
        },
        "product_reference": "openshift-kuryr-common-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
        "relates_to_product_reference": "8Base-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-kuryr-controller-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "8Base-RHOSE-4.4:openshift-kuryr-controller-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch"
        },
        "product_reference": "openshift-kuryr-controller-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
        "relates_to_product_reference": "8Base-RHOSE-4.4"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-kuryr-kubernetes-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch as a component of Red Hat OpenShift Container Platform 4.4",
          "product_id": "8Base-RHOSE-4.4:python3-kuryr-kubernetes-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch"
        },
        "product_reference": "python3-kuryr-kubernetes-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
        "relates_to_product_reference": "8Base-RHOSE-4.4"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2020-2160",
      "cwe": {
        "id": "CWE-352",
        "name": "Cross-Site Request Forgery (CSRF)"
      },
      "discovery_date": "2020-03-26T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1819190"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Jenkins 2.227 and earlier, LTS 2.204.5 and earlier uses different representations of request URL paths, which allows attackers to craft URLs that allow bypassing CSRF protection of any target URL.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "jenkins: CSRF protection bypass via crafted URLs",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.src",
          "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-svcat-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.src",
          "7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.src",
          "7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.src",
          "7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.noarch",
          "7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.src",
          "7Server-RH7-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el7.src",
          "7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
          "7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.src",
          "7Server-RH7-RHOSE-4.4:openshift-ansible-test-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
          "7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.src",
          "7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el7.x86_64",
          "8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.src",
          "8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.x86_64",
          "8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.src",
          "8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
          "8Base-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
          "8Base-RHOSE-4.4:cri-o-debugsource-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
          "8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.src",
          "8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.x86_64",
          "8Base-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el8.src",
          "8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.src",
          "8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
          "8Base-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
          "8Base-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el8.x86_64",
          "8Base-RHOSE-4.4:openshift-kuryr-0:4.4.0-202006080017.git.1.855ef1d.el8.src",
          "8Base-RHOSE-4.4:openshift-kuryr-cni-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
          "8Base-RHOSE-4.4:openshift-kuryr-common-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
          "8Base-RHOSE-4.4:openshift-kuryr-controller-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
          "8Base-RHOSE-4.4:python3-kuryr-kubernetes-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2020-2160"
        },
        {
          "category": "external",
          "summary": "RHBZ#1819190",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1819190"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2020-2160",
          "url": "https://www.cve.org/CVERecord?id=CVE-2020-2160"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2160",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2160"
        },
        {
          "category": "external",
          "summary": "https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1774",
          "url": "https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1774"
        }
      ],
      "release_date": "2020-03-25T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2020-06-17T19:38:33+00:00",
          "details": "For OpenShift Container Platform 4.4 see the following documentation, which\nwill be updated shortly for release 4.4.8, for important instructions on\nhow to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.openshift.com/container-platform/4.4/release_notes/ocp-4-4-release-notes.html\n\nDetails on how to access this content are available at\nhttps://docs.openshift.com/container-platform/4.4/updating/updating-cluster-cli.html.",
          "product_ids": [
            "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.src",
            "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-svcat-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.src",
            "7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.src",
            "7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.src",
            "7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.noarch",
            "7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
            "7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-ansible-test-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
            "7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el7.x86_64",
            "8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.src",
            "8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.x86_64",
            "8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.src",
            "8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
            "8Base-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
            "8Base-RHOSE-4.4:cri-o-debugsource-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
            "8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.src",
            "8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el8.src",
            "8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.src",
            "8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-kuryr-0:4.4.0-202006080017.git.1.855ef1d.el8.src",
            "8Base-RHOSE-4.4:openshift-kuryr-cni-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
            "8Base-RHOSE-4.4:openshift-kuryr-common-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
            "8Base-RHOSE-4.4:openshift-kuryr-controller-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
            "8Base-RHOSE-4.4:python3-kuryr-kubernetes-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHBA-2020:2444"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.src",
            "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-svcat-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.src",
            "7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.src",
            "7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.src",
            "7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.noarch",
            "7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
            "7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-ansible-test-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
            "7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el7.x86_64",
            "8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.src",
            "8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.x86_64",
            "8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.src",
            "8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
            "8Base-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
            "8Base-RHOSE-4.4:cri-o-debugsource-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
            "8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.src",
            "8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el8.src",
            "8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.src",
            "8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-kuryr-0:4.4.0-202006080017.git.1.855ef1d.el8.src",
            "8Base-RHOSE-4.4:openshift-kuryr-cni-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
            "8Base-RHOSE-4.4:openshift-kuryr-common-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
            "8Base-RHOSE-4.4:openshift-kuryr-controller-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
            "8Base-RHOSE-4.4:python3-kuryr-kubernetes-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "jenkins: CSRF protection bypass via crafted URLs"
    },
    {
      "cve": "CVE-2020-2161",
      "cwe": {
        "id": "CWE-79",
        "name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
      },
      "discovery_date": "2020-03-26T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1819198"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Jenkins 2.227 and earlier, LTS 2.204.5 and earlier does not properly escape node labels that are shown in the form validation for label expressions on job configuration pages, resulting in a stored XSS vulnerability exploitable by users able to define node labels.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "jenkins: XSS in job configuration pages",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.src",
          "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-svcat-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.src",
          "7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.src",
          "7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.src",
          "7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.noarch",
          "7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.src",
          "7Server-RH7-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el7.src",
          "7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
          "7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.src",
          "7Server-RH7-RHOSE-4.4:openshift-ansible-test-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
          "7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.src",
          "7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el7.x86_64",
          "8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.src",
          "8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.x86_64",
          "8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.src",
          "8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
          "8Base-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
          "8Base-RHOSE-4.4:cri-o-debugsource-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
          "8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.src",
          "8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.x86_64",
          "8Base-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el8.src",
          "8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.src",
          "8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
          "8Base-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
          "8Base-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el8.x86_64",
          "8Base-RHOSE-4.4:openshift-kuryr-0:4.4.0-202006080017.git.1.855ef1d.el8.src",
          "8Base-RHOSE-4.4:openshift-kuryr-cni-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
          "8Base-RHOSE-4.4:openshift-kuryr-common-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
          "8Base-RHOSE-4.4:openshift-kuryr-controller-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
          "8Base-RHOSE-4.4:python3-kuryr-kubernetes-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2020-2161"
        },
        {
          "category": "external",
          "summary": "RHBZ#1819198",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1819198"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2020-2161",
          "url": "https://www.cve.org/CVERecord?id=CVE-2020-2161"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2161",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2161"
        },
        {
          "category": "external",
          "summary": "https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1781",
          "url": "https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1781"
        }
      ],
      "release_date": "2020-03-25T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2020-06-17T19:38:33+00:00",
          "details": "For OpenShift Container Platform 4.4 see the following documentation, which\nwill be updated shortly for release 4.4.8, for important instructions on\nhow to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.openshift.com/container-platform/4.4/release_notes/ocp-4-4-release-notes.html\n\nDetails on how to access this content are available at\nhttps://docs.openshift.com/container-platform/4.4/updating/updating-cluster-cli.html.",
          "product_ids": [
            "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.src",
            "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-svcat-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.src",
            "7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.src",
            "7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.src",
            "7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.noarch",
            "7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
            "7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-ansible-test-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
            "7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el7.x86_64",
            "8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.src",
            "8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.x86_64",
            "8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.src",
            "8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
            "8Base-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
            "8Base-RHOSE-4.4:cri-o-debugsource-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
            "8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.src",
            "8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el8.src",
            "8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.src",
            "8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-kuryr-0:4.4.0-202006080017.git.1.855ef1d.el8.src",
            "8Base-RHOSE-4.4:openshift-kuryr-cni-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
            "8Base-RHOSE-4.4:openshift-kuryr-common-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
            "8Base-RHOSE-4.4:openshift-kuryr-controller-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
            "8Base-RHOSE-4.4:python3-kuryr-kubernetes-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHBA-2020:2444"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 5.4,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.src",
            "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-svcat-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.src",
            "7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.src",
            "7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.src",
            "7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.noarch",
            "7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
            "7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-ansible-test-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
            "7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el7.x86_64",
            "8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.src",
            "8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.x86_64",
            "8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.src",
            "8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
            "8Base-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
            "8Base-RHOSE-4.4:cri-o-debugsource-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
            "8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.src",
            "8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el8.src",
            "8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.src",
            "8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-kuryr-0:4.4.0-202006080017.git.1.855ef1d.el8.src",
            "8Base-RHOSE-4.4:openshift-kuryr-cni-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
            "8Base-RHOSE-4.4:openshift-kuryr-common-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
            "8Base-RHOSE-4.4:openshift-kuryr-controller-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
            "8Base-RHOSE-4.4:python3-kuryr-kubernetes-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "jenkins: XSS in job configuration pages"
    },
    {
      "cve": "CVE-2020-2162",
      "cwe": {
        "id": "CWE-79",
        "name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
      },
      "discovery_date": "2020-03-26T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1819211"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Jenkins 2.227 and earlier, LTS 2.204.5 and earlier does not set Content-Security-Policy headers for files uploaded as file parameters to a build, resulting in a stored XSS vulnerability.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "jenkins: Content-Security-Policy headers for files uploaded leads to XSS",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.src",
          "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-svcat-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.src",
          "7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.src",
          "7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.src",
          "7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.noarch",
          "7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.src",
          "7Server-RH7-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el7.src",
          "7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
          "7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.src",
          "7Server-RH7-RHOSE-4.4:openshift-ansible-test-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
          "7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.src",
          "7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el7.x86_64",
          "8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.src",
          "8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.x86_64",
          "8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.src",
          "8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
          "8Base-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
          "8Base-RHOSE-4.4:cri-o-debugsource-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
          "8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.src",
          "8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.x86_64",
          "8Base-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el8.src",
          "8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.src",
          "8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
          "8Base-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
          "8Base-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el8.x86_64",
          "8Base-RHOSE-4.4:openshift-kuryr-0:4.4.0-202006080017.git.1.855ef1d.el8.src",
          "8Base-RHOSE-4.4:openshift-kuryr-cni-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
          "8Base-RHOSE-4.4:openshift-kuryr-common-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
          "8Base-RHOSE-4.4:openshift-kuryr-controller-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
          "8Base-RHOSE-4.4:python3-kuryr-kubernetes-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2020-2162"
        },
        {
          "category": "external",
          "summary": "RHBZ#1819211",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1819211"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2020-2162",
          "url": "https://www.cve.org/CVERecord?id=CVE-2020-2162"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2162",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2162"
        },
        {
          "category": "external",
          "summary": "https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1793",
          "url": "https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1793"
        }
      ],
      "release_date": "2020-03-25T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2020-06-17T19:38:33+00:00",
          "details": "For OpenShift Container Platform 4.4 see the following documentation, which\nwill be updated shortly for release 4.4.8, for important instructions on\nhow to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.openshift.com/container-platform/4.4/release_notes/ocp-4-4-release-notes.html\n\nDetails on how to access this content are available at\nhttps://docs.openshift.com/container-platform/4.4/updating/updating-cluster-cli.html.",
          "product_ids": [
            "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.src",
            "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-svcat-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.src",
            "7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.src",
            "7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.src",
            "7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.noarch",
            "7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
            "7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-ansible-test-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
            "7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el7.x86_64",
            "8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.src",
            "8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.x86_64",
            "8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.src",
            "8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
            "8Base-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
            "8Base-RHOSE-4.4:cri-o-debugsource-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
            "8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.src",
            "8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el8.src",
            "8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.src",
            "8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-kuryr-0:4.4.0-202006080017.git.1.855ef1d.el8.src",
            "8Base-RHOSE-4.4:openshift-kuryr-cni-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
            "8Base-RHOSE-4.4:openshift-kuryr-common-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
            "8Base-RHOSE-4.4:openshift-kuryr-controller-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
            "8Base-RHOSE-4.4:python3-kuryr-kubernetes-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHBA-2020:2444"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 5.4,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.src",
            "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-svcat-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.src",
            "7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.src",
            "7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.src",
            "7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.noarch",
            "7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
            "7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-ansible-test-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
            "7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el7.x86_64",
            "8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.src",
            "8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.x86_64",
            "8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.src",
            "8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
            "8Base-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
            "8Base-RHOSE-4.4:cri-o-debugsource-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
            "8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.src",
            "8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el8.src",
            "8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.src",
            "8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-kuryr-0:4.4.0-202006080017.git.1.855ef1d.el8.src",
            "8Base-RHOSE-4.4:openshift-kuryr-cni-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
            "8Base-RHOSE-4.4:openshift-kuryr-common-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
            "8Base-RHOSE-4.4:openshift-kuryr-controller-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
            "8Base-RHOSE-4.4:python3-kuryr-kubernetes-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "jenkins: Content-Security-Policy headers for files uploaded leads to XSS"
    },
    {
      "cve": "CVE-2020-2163",
      "cwe": {
        "id": "CWE-79",
        "name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
      },
      "discovery_date": "2020-03-25T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1819222"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Jenkins 2.227 and earlier, LTS 2.204.5 and earlier improperly processes HTML content of list view column headers, resulting in a stored XSS vulnerability exploitable by users able to control column headers.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "jenkins: improperly processes HTML content of list leads to XSS",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.src",
          "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-svcat-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.src",
          "7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.src",
          "7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.src",
          "7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.noarch",
          "7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.src",
          "7Server-RH7-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el7.src",
          "7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
          "7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.src",
          "7Server-RH7-RHOSE-4.4:openshift-ansible-test-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
          "7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.src",
          "7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
          "7Server-RH7-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el7.x86_64",
          "8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.src",
          "8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.x86_64",
          "8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.src",
          "8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
          "8Base-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
          "8Base-RHOSE-4.4:cri-o-debugsource-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
          "8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.src",
          "8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.x86_64",
          "8Base-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el8.src",
          "8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.src",
          "8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
          "8Base-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
          "8Base-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el8.x86_64",
          "8Base-RHOSE-4.4:openshift-kuryr-0:4.4.0-202006080017.git.1.855ef1d.el8.src",
          "8Base-RHOSE-4.4:openshift-kuryr-cni-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
          "8Base-RHOSE-4.4:openshift-kuryr-common-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
          "8Base-RHOSE-4.4:openshift-kuryr-controller-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
          "8Base-RHOSE-4.4:python3-kuryr-kubernetes-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2020-2163"
        },
        {
          "category": "external",
          "summary": "RHBZ#1819222",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1819222"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2020-2163",
          "url": "https://www.cve.org/CVERecord?id=CVE-2020-2163"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-2163",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-2163"
        },
        {
          "category": "external",
          "summary": "https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1796",
          "url": "https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1796"
        }
      ],
      "release_date": "2020-03-26T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2020-06-17T19:38:33+00:00",
          "details": "For OpenShift Container Platform 4.4 see the following documentation, which\nwill be updated shortly for release 4.4.8, for important instructions on\nhow to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.openshift.com/container-platform/4.4/release_notes/ocp-4-4-release-notes.html\n\nDetails on how to access this content are available at\nhttps://docs.openshift.com/container-platform/4.4/updating/updating-cluster-cli.html.",
          "product_ids": [
            "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.src",
            "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-svcat-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.src",
            "7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.src",
            "7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.src",
            "7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.noarch",
            "7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
            "7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-ansible-test-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
            "7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el7.x86_64",
            "8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.src",
            "8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.x86_64",
            "8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.src",
            "8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
            "8Base-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
            "8Base-RHOSE-4.4:cri-o-debugsource-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
            "8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.src",
            "8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el8.src",
            "8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.src",
            "8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-kuryr-0:4.4.0-202006080017.git.1.855ef1d.el8.src",
            "8Base-RHOSE-4.4:openshift-kuryr-cni-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
            "8Base-RHOSE-4.4:openshift-kuryr-common-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
            "8Base-RHOSE-4.4:openshift-kuryr-controller-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
            "8Base-RHOSE-4.4:python3-kuryr-kubernetes-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHBA-2020:2444"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 5.4,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "LOW",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.src",
            "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:atomic-enterprise-service-catalog-svcat-1:4.4.0-202006080017.git.1.77a5cc9.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.src",
            "7Server-RH7-RHOSE-4.4:atomic-openshift-service-idler-0:4.4.0-202006080017.git.1.7e463c3.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.src",
            "7Server-RH7-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.src",
            "7Server-RH7-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.noarch",
            "7Server-RH7-RHOSE-4.4:jenkins-0:2.222.1.1591351066-1.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
            "7Server-RH7-RHOSE-4.4:openshift-ansible-0:4.4.0-202006061254.git.1.a996454.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-ansible-test-0:4.4.0-202006061254.git.1.a996454.el7.noarch",
            "7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.src",
            "7Server-RH7-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el7.x86_64",
            "7Server-RH7-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el7.x86_64",
            "8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.src",
            "8Base-RHOSE-4.4:conmon-2:2.0.17-1.rhaos4.4.el8.x86_64",
            "8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.src",
            "8Base-RHOSE-4.4:cri-o-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
            "8Base-RHOSE-4.4:cri-o-debuginfo-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
            "8Base-RHOSE-4.4:cri-o-debugsource-0:1.17.4-14.dev.rhaos4.4.gitb93af5d.el8.x86_64",
            "8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.src",
            "8Base-RHOSE-4.4:machine-config-daemon-0:4.4.0-202006080017.git.1.32e0736.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-0:4.4.0-202006061254.git.1.dc84fb4.el8.src",
            "8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.src",
            "8Base-RHOSE-4.4:openshift-clients-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-clients-redistributable-0:4.4.0-202006061254.git.1.26cb6dc.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-hyperkube-0:4.4.0-202006061254.git.1.dc84fb4.el8.x86_64",
            "8Base-RHOSE-4.4:openshift-kuryr-0:4.4.0-202006080017.git.1.855ef1d.el8.src",
            "8Base-RHOSE-4.4:openshift-kuryr-cni-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
            "8Base-RHOSE-4.4:openshift-kuryr-common-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
            "8Base-RHOSE-4.4:openshift-kuryr-controller-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch",
            "8Base-RHOSE-4.4:python3-kuryr-kubernetes-0:4.4.0-202006080017.git.1.855ef1d.el8.noarch"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "jenkins: improperly processes HTML content of list leads to XSS"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2020-2161 (GCVE-0-2020-2161)

Vulnerability from bitnami_vulndb

Tags

Sightings

Nomenclature